Maven package
org.apache.sshd/sshd-sftp
pkg:maven/org.apache.sshd/sshd-sftp
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-35887 | — | >= 1.0.0, < 2.9.3 | 2.9.3 | Jul 10, 2023 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache MINA. In SFTP servers implemented using Apache MINA SSHD that use a RootedFileSystem, logged users may be able to discover "exists/does not exist" information about item |
- CVE-2023-35887Jul 10, 2023affected >= 1.0.0, < 2.9.3fixed 2.9.3
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache MINA. In SFTP servers implemented using Apache MINA SSHD that use a RootedFileSystem, logged users may be able to discover "exists/does not exist" information about item