Medium severity4.7NVD Advisory· Published May 19, 2017· Updated Jun 17, 2026
CVE-2017-9079
CVE-2017-9079
Description
Dropbear before 2017.75 might allow local users to read certain files as root, if the file has the authorized_keys file format with a command= option. This occurs because ~/.ssh/authorized_keys is read with root privileges and symlinks are followed.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:dropbear_ssh_project:dropbear_ssh:*:*:*:*:*:*:*:*Range: <2017.75
Patches
Vulnerability mechanics
References
3- lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2017q2/001985.htmlnvdMailing ListPatchThird Party Advisory
- www.debian.org/security/2017/dsa-3859nvdThird Party Advisory
- security.netapp.com/advisory/ntap-20191004-0006/nvd
News mentions
0No linked articles in our index yet.