OVAL Reference oval:com.ubuntu.cosmic:def:201910000180000000

Oval Definition:

oval:com.ubuntu.cosmic:def:201910000180000000

Revision Date:	2019-02-04	Version:	1
Title:	CVE-2019-1000018 on Ubuntu 18.10 (cosmic) - medium.
Description:	rssh version 2.3.4 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in allowscp permission that can result in Local command execution. This attack appear to be exploitable via An authorized SSH user with the allowscp permission.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2019-1000018
Platform(s):	Ubuntu 18.10	Product(s):
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed. AND rssh package in cosmic was vulnerable but has been fixed (note: '2.3.4-8ubuntu0.2').