Every CVE whose affected-product data names Scponly, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2007-6350 — CVSS 8.5 (high): scponly 4.6 and earlier allows remote authenticated users to bypass intended restrictions and execute code by invoking dangerous…
CVE-2002-1469 — CVSS 7.5 (high): scponly does not properly verify the path when finding the (1) scp or (2) sftp-server programs, which could allow remote authenticated…
CVE-2004-1162 — CVSS 7.5 (high): The unison command in scponly before 4.0 does not properly restrict programs that can be run, which could allow remote authenticated users…
CVE-2005-4533 — CVSS 7.5 (high): Argument injection vulnerability in scponlyc in scponly 4.1 and earlier, when both scp and rsync compatibility are enabled, allows local…
CVE-2005-4532 — CVSS 7.2 (high): scponlyc in scponly 4.1 and earlier, when the operating system supports LD_PRELOAD mechanisms, allows local users to execute arbitrary code…