Updated CVE vulnerability flag.

2024-06-28 10:23:08 +02:00 · 2022-02-21 21:51:35 -05:00 · 2022-02-21 21:51:35 -05:00 · 0a6ac5de54
commit 0a6ac5de54
parent c6b8dc97e1
1 changed files with 1 additions and 1 deletions
--- a/src/ssh_audit/versionvulnerabilitydb.py
+++ b/src/ssh_audit/versionvulnerabilitydb.py
@ -76,7 +76,7 @@ class VersionVulnerabilityDB:  # pylint: disable=too-few-public-methods
            ['1.0',     '7.9',     2, 'CVE-2019-6110',  6.8, 'output manipulation'],
            ['1.0',     '7.9',     2, 'CVE-2019-6109',  6.8, 'output manipulation'],
            ['1.0',     '7.9',     2, 'CVE-2018-20685', 5.3, 'directory permissions modification via scp'],
-            ['5.9',     '7.8',     0, 'CVE-2018-15919', 5.3, 'username enumeration via GS2'],
+            ['5.9',     '7.8',     1, 'CVE-2018-15919', 5.3, 'username enumeration via GS2'],
            ['1.0',     '7.7',     1, 'CVE-2018-15473', 5.3, 'enumerate usernames due to timing discrepancies'],
            ['1.2',     '6.292',   1, 'CVE-2017-15906', 5.3, 'readonly bypass via sftp'],
            ['1.0',     '8.7',     1, 'CVE-2016-20012', 5.3, 'enumerate usernames via challenge response'],