CVE-2019-6110

In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.

Date published : 2019-01-31

https://security.netapp.com/advisory/ntap-20190213-0001/

https://www.exploit-db.com/exploits/46193/