Exploit for #VU16989 Spoofing attack in WinSCP
Vulnerability identifier: #VU16989
Vulnerability risk: Low
CVSSv4.0: 2.9 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear]
CVE-ID:
CWE-ID:
CWE-451
Exploitation vector: Network
Exploits in database: 2
- June 17, 2021
- OpenSSH SCP Client - Write Arbitrary Files [Exploit-DB]
- SCP Client - Multiple Vulnerabilities (SSHtranger Things) [Exploit-DB]
Vulnerable software:
WinSCP
Client/Desktop applications /
File managers, FTP clients
Vendor: winscp.sourceforge.net
