An issue was discovered in Midnight Commander through 4.8.26. When establishing an SFTP connection, the fingerprint of the server is neither checked nor displayed. As a result, a user connects to the server without the ability to verify its authenticity.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2021-08-30T18:37:23
Updated: 2024-08-04T00:54:51.423Z
Reserved: 2021-07-09T00:00:00
Link: CVE-2021-36370

No data.

Status : Modified
Published: 2021-08-30T19:15:08.917
Modified: 2024-11-21T06:13:37.327
Link: CVE-2021-36370

No data.