Critical severity9.8NVD Advisory· Published Mar 3, 2017· Updated Jun 17, 2026
CVE-2016-7407
CVE-2016-7407
Description
The dropbearconvert command in Dropbear SSH before 2016.74 allows attackers to execute arbitrary code via a crafted OpenSSH key file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:dropbear_ssh_project:dropbear_ssh:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:dropbear_ssh_project:dropbear_ssh:*:*:*:*:*:*:*:*range: <=2016.73
- (no CPE)range: <2016.74
Patches
Vulnerability mechanics
References
5- www.openwall.com/lists/oss-security/2016/09/15/2nvdMailing ListPatchThird Party Advisory
- secure.ucc.asn.au/hg/dropbear/rev/34e6127ef02envdIssue TrackingPatchThird Party Advisory
- security.gentoo.org/glsa/201702-23nvdPatchThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/92972nvdThird Party AdvisoryVDB Entry
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
News mentions
0No linked articles in our index yet.