Lucene search
K

892 matches found

OSV
OSV
added 2026/06/17 8:17 p.m.64 views

UBUNTU-CVE-2026-55200

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2transportread that fails to enforce upper bounds on packetlength field. Remote attackers can send crafted SSH packets with excessively large packetlength values to corrupt heap memory and achieve...

9.2CVSS7.5AI score0.00732EPSS
Exploits10References4
Cvelist
Cvelist
added 2026/06/17 7:3 p.m.24 views

CVE-2026-55200 libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2transportread that fails to enforce upper bounds on packetlength field. Remote attackers can send crafted SSH packets with excessively large packetlength values to corrupt heap memory and achieve...

9.2CVSS0.00732EPSS
Exploits10References3
Debian CVE
Debian CVE
added 2026/06/17 7:3 p.m.43 views

CVE-2026-55200

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2transportread that fails to enforce upper bounds on packetlength field. Remote attackers can send crafted SSH packets with excessively large packetlength values to corrupt heap memory and achieve...

9.2CVSS5.9AI score0.00732EPSS
Exploits10
AlpineLinux
AlpineLinux
added 2026/06/17 7:3 p.m.5 views

CVE-2026-55200

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2transportread that fails to enforce upper bounds on packetlength field. Remote attackers can send crafted SSH packets with excessively large packetlength values to corrupt heap memory and achieve...

9.2CVSS6.2AI score0.00732EPSS
Exploits10References5
EUVD
EUVD
added 2026/06/17 7:3 p.m.8 views

EUVD-2026-37784

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2transportread that fails to enforce upper bounds on packetlength field. Remote attackers can send crafted SSH packets with excessively large packetlength values to corrupt heap memory and achieve...

9.2CVSS5.8AI score0.00732EPSS
Exploits10References3
Vulnrichment
Vulnrichment
added 2026/06/17 7:3 p.m.14 views

CVE-2026-55200 libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2transportread that fails to enforce upper bounds on packetlength field. Remote attackers can send crafted SSH packets with excessively large packetlength values to corrupt heap memory and achieve...

9.2CVSS5.9AI score0.00732EPSS
Exploits10References3
CVE
CVE
added 2026/06/17 7:3 p.m.484 views

CVE-2026-55200

CVE-2026-55200 affects libssh2 up to version 1.11.1. The vulnerability is an out-of-bounds write in ssh2_transport_read() caused by failure to enforce upper bounds on packet_length, allowing remote attackers to send crafted SSH packets to corrupt heap memory and achieve remote code execution. The...

9.2CVSS5.9AI score0.00732EPSS
Exploits10References4Affected Software1
Debian CVE
Debian CVE
added 2026/06/17 6:44 p.m.8 views

CVE-2026-55199

libssh2 through 1.11.1, fixed in commit 1762685, contains a pre-authentication denial of service vulnerability in the SSHMSGEXTINFO handler in src/packet.c that allows a malicious SSH server to cause a client CPU exhaustion loop by sending a crafted extension count value. A malicious server can s...

8.2CVSS5.3AI score0.00408EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2026/06/17 6:44 p.m.6 views

CVE-2026-55199

libssh2 through 1.11.1, fixed in commit 1762685, contains a pre-authentication denial of service vulnerability in the SSHMSGEXTINFO handler in src/packet.c that allows a malicious SSH server to cause a client CPU exhaustion loop by sending a crafted extension count value. A malicious server can s...

8.2CVSS5.8AI score0.00408EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/06/17 6:44 p.m.11 views

CVE-2026-55199 libssh2 - Pre-Authentication DoS via SSH_MSG_EXT_INFO Handler

libssh2 through 1.11.1, fixed in commit 1762685, contains a pre-authentication denial of service vulnerability in the SSHMSGEXTINFO handler in src/packet.c that allows a malicious SSH server to cause a client CPU exhaustion loop by sending a crafted extension count value. A malicious server can s...

8.2CVSS5.3AI score0.00408EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/17 6:44 p.m.10 views

EUVD-2026-37782

libssh2 through 1.11.1, fixed in commit 1762685, contains a pre-authentication denial of service vulnerability in the SSHMSGEXTINFO handler in src/packet.c that allows a malicious SSH server to cause a client CPU exhaustion loop by sending a crafted extension count value. A malicious server can s...

8.2CVSS5.3AI score0.00408EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/06/17 12:0 a.m.8 views

Photon OS 5.0: Libssh2 PHSA-2026-5.0-0857

An update of the libssh2 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0857. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.1CVSS5.2AI score0.00466EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.16 views

PT-2026-50527

Name of the Vulnerable Software and Affected Versions libssh2 versions prior to 1.11.1 Description A pre-authentication denial of service issue exists in the SSH MSG EXT INFO handler within src/packet.c. A malicious SSH server can trigger a CPU exhaustion loop on the client by sending a crafted...

9.2CVSS5.9AI score0.00732EPSS
Exploits10References38
Positive Technologies
Positive Technologies
added 2026/06/13 12:0 a.m.37 views

PT-2026-50528

Name of the Vulnerable Software and Affected Versions libssh2 versions prior to 1.11.2 Description An out-of-bounds write issue exists in the ssh2 transport read function due to an integer overflow and a failure to enforce upper bounds on the packet length field. A remote attacker operating a...

9.8CVSS8AI score0.00732EPSS
Exploits10References96
Wolfi
Wolfi
added 2026/06/08 1:48 p.m.11 views

CVE-2026-7598 vulnerabilities

Vulnerabilities for packages: libssh2...

9.1CVSS7.1AI score0.00466EPSS
Exploits0
Wolfi
Wolfi
added 2026/06/08 1:48 p.m.11 views

GHSA-JHP3-H4HP-2C3P vulnerabilities

Vulnerabilities for packages: libssh2...

5.4AI score
Exploits0
Chainguard
Chainguard
added 2026/06/08 1:26 p.m.7 views

GHSA-JHP3-H4HP-2C3P vulnerabilities

Vulnerabilities for packages: libssh2...

5.4AI score
Exploits0
Chainguard
Chainguard
added 2026/06/08 1:26 p.m.9 views

CVE-2026-7598 vulnerabilities

Vulnerabilities for packages: libssh2...

9.1CVSS7.1AI score0.00466EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.40 views

Amazon Linux 2023 : libssh2, libssh2-devel (ALAS2023-2026-1779)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1779 advisory. A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauthpassword of the file src/userauth.c. Such manipulation of the argument...

9.1CVSS7.3AI score0.00466EPSS
Exploits0References4
Amazon
Amazon
added 2026/06/08 12:0 a.m.11 views

Medium: libssh2

Issue Overview: A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauthpassword of the file src/userauth.c. Such manipulation of the argument usernamelen/passwordlen leads to integer overflow. The attack may be launched remotely. The name ...

7.5CVSS7AI score0.00466EPSS
Exploits0
Rows per page
Query Builder