CVE-2026-4115

all versions

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsa_verify of the file crypto/ecc-ssh.c of the component Ed

3.7LOW

CVE-2024-31497

>= 0.68 and < 0.81

In PuTTY 0.68 through 0.80 before 0.81, biased ECDSA nonce generation allows an attacker to recover a user's NIST P-521 secret key

5.9MEDIUM

CVE-2023-48795

< 0.80

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attacker

5.9MEDIUM

CVE-2021-36367

<= 0.75

PuTTY through 0.75 proceeds with establishing an SSH session even if it has never sent a substantive authentication response. This

8.1HIGH

CVE-2021-33500

< 0.75

PuTTY before 0.75 on Windows allows remote servers to cause a denial of service (Windows GUI hang) by telling the PuTTY window to

7.5HIGH

CVE-2020-14002

>= 0.68 and <= 0.73

PuTTY 0.68 through 0.73 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man

5.9MEDIUM

CVE-2019-17069

< 0.73

PuTTY before 0.73 might allow remote SSH-1 servers to cause a denial of service by accessing freed memory locations via an SSH1_MS

7.5HIGH

CVE-2019-17068

< 0.73

PuTTY before 0.73 mishandles the "bracketed paste mode" protection mechanism, which may allow a session to be affected by maliciou

7.5HIGH

CVE-2019-17067

< 0.73

PuTTY before 0.73 on Windows improperly opens port-forwarding listening sockets, which allows attackers to listen on the same port

9.8CRITICAL

CVE-2019-9898

< 0.71

Potential recycling of random numbers used in cryptography exists within PuTTY before 0.71.

9.8CRITICAL

CVE-2019-9897

< 0.71

Multiple denial-of-service attacks that can be triggered by writing to the terminal exist in PuTTY versions before 0.71.

7.5HIGH

CVE-2019-9896

< 0.71

In PuTTY versions before 0.71 on Windows, local attackers could hijack the application by putting a malicious help file in the sam

7.8HIGH

CVE-2019-9895

< 0.71

In PuTTY versions before 0.71 on Unix, a remotely triggerable buffer overflow exists in any kind of server-to-client forwarding.

9.8CRITICAL

CVE-2019-9894

< 0.71

A remotely triggerable memory overwrite in RSA key exchange in PuTTY before 0.71 can occur before host key verification.

7.5HIGH

CVE-2017-6542

<= 0.67

The ssh_agent_channel_data function in PuTTY before 0.68 allows remote attackers to have unspecified impact via a large length val

9.8CRITICAL

CVE-2016-6167

all versions

Multiple untrusted search path vulnerabilities in Putty beta 0.67 allow local users to execute arbitrary code and conduct DLL hija

7.8HIGH

CVE-2016-2563

<= 0.66

Stack-based buffer overflow in the SCP command-line utility in PuTTY before 0.67 and KiTTY 0.66.6.3 and earlier allows remote serv

9.8CRITICAL

CVE-2015-5309

<= 0.65

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service (memory corrup

CVE-2015-2157

all versions

The (1) ssh2_load_userkey and (2) ssh2_save_userkey functions in PuTTY 0.51 through 0.63 do not properly wipe SSH-2 private keys f

CVE-2011-4607

all versions

PuTTY 0.59 through 0.61 does not clear sensitive process memory when managing user replies that occur during keyboard-interactive

CVE-2013-4852

all versions

Integer overflow in PuTTY 0.62 and earlier, WinSCP before 5.1.6, and other products that use PuTTY allows remote SSH servers to ca

CVE-2013-4208

all versions

The rsa_verify function in PuTTY before 0.63 (1) does not clear sensitive process memory after use and (2) does not free certain s

CVE-2013-4207

all versions

Buffer overflow in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of service (crash) via an invalid DSA

CVE-2013-4206

all versions

Heap-based buffer underflow in the modmul function in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of

CVE-2006-7162

<= 0.59

PuTTY 0.59 and earlier uses weak file permissions for (1) ppk files containing private keys generated by puttygen and (2) session

CVE-2005-0467

<= 0.56

Multiple integer overflows in the (1) sftp_pkt_getstring and (2) fxp_readdir_recv functions in the PSFTP and PSCP clients for PuTT

CVE-2004-1008

all versions

Integer signedness error in the ssh2_rdpkt function in PuTTY before 0.56 allows remote attackers to execute arbitrary code via a S

CVE-2004-1440

all versions

Multiple heap-based buffer overflows in the modpow function in PuTTY before 0.55 allow (1) remote attackers to execute arbitrary c

CVE-2003-0069

all versions

The PuTTY terminal emulator 0.53 allows attackers to modify the window title via a certain character escape sequence and then inse

CVE-2003-0048

all versions

PuTTY 0.53b and earlier does not clear logon credentials from memory, including plaintext passwords, which could allow attackers w

CVE-2002-1360

all versions

Multiple SSH2 servers and clients do not properly handle strings with null characters in them when the string length is specified

CVE-2002-1359

all versions

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause

CVE-2002-1358

all versions

Multiple SSH2 servers and clients do not properly handle lists with empty elements or strings, which may allow remote attackers to

CVE-2002-1357

all versions

Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allo

CVE-2000-0476

all versions

xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the windo