An issue was discovered in Midnight Commander through 4.8.26. When establishing an SFTP connection, the fingerprint of the server is neither checked nor displayed. As a result, a user connects to the server without the ability to verify its authenticity.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-08-30T18:37:23

Updated: 2024-08-04T00:54:51.423Z

Reserved: 2021-07-09T00:00:00

Link: CVE-2021-36370

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-08-30T19:15:08.917

Modified: 2024-11-21T06:13:37.327

Link: CVE-2021-36370

cve-icon Redhat

No data.