Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-hfmc-7525-mj55
  • PyPI/asyncssh
 AsyncSSH vulnerable to Prefix Truncation Attack (a.k.a. Terrapin Attack) against ChaCha20-Poly1305 and Encrypt-then-MAC 18 Dec 2023
  • Fix available
  • Severity - 5.9 (Medium)
PYSEC-2023-237
  • PyPI/asyncssh
 See record for full details 14 Nov 2023
  • Fix available
  • Severity - 5.9 (Medium)
PYSEC-2023-239
  • PyPI/asyncssh
 See record for full details 14 Nov 2023
  • Fix available
  • Severity - 6.8 (Medium)
GHSA-c35q-ffpf-5qpm
  • PyPI/asyncssh
 AsyncSSH Rogue Session Attack 09 Nov 2023
  • Fix available
  • Severity - 8.1 (High)
GHSA-cfc2-wr2v-gxm5
  • PyPI/asyncssh
 AsyncSSH Rogue Extension Negotiation 09 Nov 2023
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-97cv-6pjf-5f9q
  • PyPI/asyncssh
 AsyncSSH SSH Server Authentication Bypass 14 May 2022
  • Fix available
  • Severity - 9.3 (Critical)
PYSEC-2018-108
  • PyPI/asyncssh
  • github.com/ronf/asyncssh
 See record for full details 12 Mar 2018
  • Fix available