Lucene search
K

893 matches found

EUVD
EUVD
added 5 days ago7 views

EUVD-2026-39970

libssh2 through 1.11.1 reads an attacker-controlled 32-bit attribute count from a publickey-subsystem response and uses it in the allocation numattrs sizeoflibssh2publickeyattribute without bounds checking, so on 32-bit platforms the multiplication overflows to an undersized buffer. A malicious S...

8.3CVSS6AI score0.00333EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 5 days ago8 views

Linux Distros Unpatched Vulnerability : CVE-2026-58051

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libssh2 through 1.11.1 grows its publickey list with SSH2REALLOC but does not zero-initialize new entries before parsing populates them, so a parse failure...

8.3CVSS5.8AI score0.0028EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 5 days ago10 views

PT-2026-53083

Name of the Vulnerable Software and Affected Versions libssh2 versions prior to 1.11.2 Description An issue exists in the public key parsing process where the software expands its public key list using SSH2 REALLOC but fails to zero-initialize new entries before they are populated. If a parse...

8.3CVSS5.8AI score0.0028EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 5 days ago11 views

PT-2026-53082

Name of the Vulnerable Software and Affected Versions libssh2 versions prior to 1.11.2 Description An integer overflow occurs when the software reads an attacker-controlled 32-bit attribute count from a publickey-subsystem response. This value is used in the allocation num attrs sizeoflibssh2...

8.3CVSS6AI score0.00333EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 5 days ago6 views

Linux Distros Unpatched Vulnerability : CVE-2026-58050

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libssh2 through 1.11.1 reads an attacker-controlled 32-bit attribute count from a publickey-subsystem response and uses it in the allocation numattrs...

8.3CVSS5.9AI score0.00333EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 6 days ago8 views

libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c

...

9.2CVSS5.8AI score0.00732EPSS
Exploits10
CBLMariner
CBLMariner
added last week6 views

CVE-2026-55200 affecting package libssh2 for versions less than 1.11.1-3

CVE-2026-55200 affecting package libssh2 for versions less than 1.11.1-3. A patched version of the package is available...

9.2CVSS5.8AI score0.00732EPSS
Exploits10
Hacker One
Hacker One
added last week11 views

curl: ssh_config_matches is dead code: unauthorized SSH key reuse

Summary libcurl's SSH connection-reuse guard sshconfigmatches — added for CVE-2022-27782 and reaffirmed by CVE-2023-27538 — is dead code in every release since 7.83.1. It compares sshc-rsa / sshc-rsapub between a new transfer "needle" and a pooled connection, but on both sides those pointers are...

7.7CVSS6.7AI score0.02596EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.3 views

Debian dsa-6365 : libssh2-1-dev - security update

The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6365 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6365-1 [email protected] https://www.debian.org/securit...

9.2CVSS7.7AI score0.00732EPSS
Exploits10References10
Debian
Debian
added 2026/06/25 6:20 p.m.12 views

[SECURITY] [DSA 6365-1] libssh2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6365-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 25, 2026 https://www.debian.org/security/faq -...

9.2CVSS6AI score0.00732EPSS
Exploits10
OSV
OSV
added 2026/06/25 2:28 p.m.5 views

ROOT-OS-DEBIAN-11-CVE-2026-7598 CVE-2026-7598 in rootio-libssh2 - Patched by Root

Root has patched CVE-2026-7598 in the rootio-libssh2 package for Root:Debian:11. Multiple fixed versions available...

9.1CVSS7.1AI score0.00466EPSS
Exploits0
OSV
OSV
added 2026/06/25 2:28 p.m.2 views

ROOT-OS-DEBIAN-11-CVE-2026-55200 CVE-2026-55200 in rootio-libssh2 - Patched by Root

Root has patched CVE-2026-55200 in the rootio-libssh2 package for Root:Debian:11. Multiple fixed versions available...

9.2CVSS7.1AI score0.00732EPSS
Exploits10
RedHat Linux
RedHat Linux
added 2026/06/25 1:2 p.m.7 views

Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: libssh2: libssh2-1.11.1-8.hum1 aarch64, x8664 libssh2-devel-1.11.1-8.hum1 aarch64, x8664 libssh2-docs-1.11.1-8.hum1 noarch libssh2-1.11.1-8.hum1.src src...

9.2CVSS7.3AI score0.00732EPSS
Exploits10References4
NCSC
NCSC
added 2026/06/24 9:1 a.m.6 views

The vulnerabilities in libssh2 are addressed through libssh.

LibSSH has vulnerabilities in libssh2, including versions up to 1.11.1. The first vulnerability involves a denial-of-service attack during the pre-authentication phase, within the SSHMSGEXTINFO handler. A malicious SSH server can send a specially constructed extensioncount value, causing the clie...

9.2CVSS6.2AI score0.00732EPSS
Exploits10References2
BDU FSTEC
BDU FSTEC
added 2026/06/24 12:0 a.m.3 views

The vulnerability of the ssh2_transport_read() function in the libssh2 library, which allows a hacker to execute arbitrary code.

The vulnerability of the ssh2transportread function in the libssh2 library is related to buffer overflows due to integer overflows. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using specially created SSH packets...

10CVSS7.9AI score0.00732EPSS
Exploits10References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/23 7:53 p.m.7 views

CVE-2026-55199

A vulnerability in libssh2 allows a malicious SSH server to freeze connected clients during the handshake process. By sending a malformed packet, the server triggers a loop that exhausts the client's CPU, resulting in a denial of service. Mitigation To mitigate this issue, ensure your libssh2...

8.2CVSS5.9AI score0.00408EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/06/23 7:41 p.m.12 views

CVE-2026-55200

An out-of-bounds write vulnerability exists in the libssh2 client. A remote attacker can exploit this by sending a specially crafted SSH packet with an abnormally large length value. This corrupts the application's memory and can potentially allow the attacker to execute arbitrary code on the...

9.2CVSS6.3AI score0.00732EPSS
Exploits10References6
SUSE CVE
SUSE CVE
added 2026/06/20 2:48 a.m.10 views

SUSE CVE-2025-15661

libssh2 through 1.11.1, fixed in commit 2dae302, contains an out-of-bounds heap read vulnerability in the sftpsymlink function in src/sftp.c that allows a malicious SSH server or man-in-the-middle attacker to disclose heap memory contents or cause a crash by sending a crafted SSHFXPNAME response...

6.8CVSS6AI score0.00267EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-55200

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2transportread that fails to enforce upper bounds on...

9.2CVSS7.5AI score0.00732EPSS
Exploits10References4
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-55199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libssh2 through 1.11.1, fixed in commit 1762685, contains a pre-authentication denial of service vulnerability in the SSHMSGEXTINFO handler in src/packet.c that...

8.2CVSS7.1AI score0.00408EPSS
Exploits1References3
Rows per page
Query Builder