USN-8090-1 openssh vulnerabilities

🗓️ 12 Mar 2026 18:16:18Reported by GoogleType

osv🔗 osv.dev👁 2 Views

OpenSSH vulnerabilities: GSSAPI key exchange crash or code execution; username control characters; NULL characters in SSH URIs with ProxyCommand.

Reporter	Title	Published	Views	Family All 376
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM CloudPak for AIOps	29 Apr 202613:24	–	ibm
IBM Security Bulletins	Security Bulletin: IBM i is Affected by Improper Handling of Special Elements and Improper Neutralization of Null Byte Vulnerabilities in OpenSSH [CVE-2025-61984, CVE-2025-61985]	18 May 202620:52	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in openssh library (CVE-2025-61984, CVE-2025-61985) affect Power HMC.	31 Mar 202615:30	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MQ Appliance is affected by mulitple open source vulnerabilities (CVE-2026-23193, CVE-2026-23231, CVE-2026-3497)	7 May 202617:36	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in OpenSSH affects IBM Netezza Appliance	15 Apr 202610:29	–	ibm
IBM Security Bulletins	Security Bulletin: AIX/VIOS is vulnerable to potential code execution (CVE-2025-61984, CVE-2025-61985) due to OpenSSH	6 Jan 202621:08	–	ibm
GithubExploit	Exploit for CVE-2025-61984	13 Oct 202501:42	–	githubexploit
GithubExploit	Exploit for CVE-2025-61984	7 Oct 202503:17	–	githubexploit
ATTACKERKB	CVE-2026-3497	12 Mar 202618:27	–	attackerkb
Tenable Nessus	Amazon Linux 2023 : openssh, openssh-clients, openssh-keycat (ALAS2023-2026-1441)	19 Feb 202600:00	–	nessus

Source	Link
ubuntu	www.ubuntu.com/security/notices/USN-8090-1
ubuntu	www.ubuntu.com/security/CVE-2025-61984
ubuntu	www.ubuntu.com/security/CVE-2025-61985
ubuntu	www.ubuntu.com/security/CVE-2026-3497

27 Apr 2026 18:37Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.13.6 - 7.5

CVSS 46.9

EPSS0.00061

SSVC