Difference between WinSCP and OpenSSH for Windows

Sorry for the Newbie question, but how does WinSCP differ from OpenSSH for Windows. I know the obvious difference is that WinSCP is a GUI client, where OpenSSH only has a CLI for the client and includes a server. But is there any other differences? Is WinSCP susceptible to the same vulnerabilies as OpenSSH for Windows?

Thanks for your support.

What vulnerabilies? WinSCP SSH code is based on Putty SSH client, which does not share code with OpenSSH. So vulnerabilies specific to OpenSSH should not affect WinSCP. General problems (if any) of SSH protocol itself obviously affect both.