Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1851 matches found

Microsoft CVE
Microsoft CVEadded 2026/03/31 8:1 a.m.2 views

Libssh: libssh: denial of service via improper configuration file handling

...

3.3CVSS5.8AI score0.00158EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/03/30 12:0 a.m.7 views

Amazon Linux 2023 : libssh, libssh-config, libssh-devel (ALAS2023-2026-1472)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1472 advisory. libssh: SCP Protocol Path Traversal in sshscppullrequest CVE-2026-0964 libssh: Specially crafted patterns could cause DoS CVE-2026-0967 Tenable has extracted the preceding description block...

6.3CVSS6.2AI score0.00409EPSS
Exploits0References6
Amazon
Amazonadded 2026/03/27 12:0 a.m.6 views

Medium: libssh

Issue Overview: libssh: SCP Protocol Path Traversal in sshscppullrequest CVE-2026-0964 libssh: Specially crafted patterns could cause DoS CVE-2026-0967 Affected Packages: libssh Issue Correction: Run dnf update libssh --releasever 2023.10.20260325 or dnf update --advisory ALAS2023-2026-1472...

5.5CVSS6.4AI score0.00409EPSS
Exploits0
EUVD
EUVDadded 2026/03/26 9:31 p.m.4 views

EUVD-2026-16328

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service DoS by causing the system t...

3.3CVSS5.9AI score0.00158EPSS
Exploits0References3
EUVD
EUVDadded 2026/03/26 9:31 p.m.6 views

EUVD-2026-16332

A flaw was found in libssh. A remote attacker, by controlling client configuration files or knownhosts files, could craft specific hostnames that when processed by the matchpattern function can lead to inefficient regular expression backtracking. This can cause timeouts and resource exhaustion,...

2.2CVSS5.8AI score0.00223EPSS
Exploits0References3
NVD
NVDadded 2026/03/26 9:17 p.m.2 views

CVE-2026-0968

A flaw was found in libssh in which a malicious SFTP SSH File Transfer Protocol server can exploit this by sending a malformed 'longname' field within an SSHFXPNAME message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can...

3.1CVSS0.00442EPSS
Exploits0References5
NVD
NVDadded 2026/03/26 9:17 p.m.3 views

CVE-2026-0965

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service DoS by causing the system t...

3.3CVSS0.00158EPSS
Exploits0References4
NVD
NVDadded 2026/03/26 9:17 p.m.2 views

CVE-2026-0967

A flaw was found in libssh. A remote attacker, by controlling client configuration files or knownhosts files, could craft specific hostnames that when processed by the matchpattern function can lead to inefficient regular expression backtracking. This can cause timeouts and resource exhaustion,...

5.5CVSS0.00223EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/03/26 8:6 p.m.24 views

CVE-2026-0965 Libssh: libssh: denial of service via improper configuration file handling

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service DoS by causing the system t...

3.3CVSS0.00158EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/03/26 8:6 p.m.3 views

CVE-2026-0965

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service DoS by causing the system t...

3.3CVSS6.1AI score0.00158EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/03/26 8:6 p.m.1 views

CVE-2026-0965 Libssh: libssh: denial of service via improper configuration file handling

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service DoS by causing the system t...

3.3CVSS5.9AI score0.00158EPSS
Exploits0References4
AlpineLinux
AlpineLinuxadded 2026/03/26 8:6 p.m.2 views

CVE-2026-0965

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service DoS by causing the system t...

3.3CVSS6AI score0.00158EPSS
Exploits0
CVE
CVEadded 2026/03/26 8:6 p.m.34 views

CVE-2026-0965

CVE-2026-0965 describes a vulnerability in libssh where the parser may attempt to open arbitrary files during configuration parsing. A local attacker could exploit this by supplying a malicious or misconfigured configuration file, potentially causing a Denial of Service by causing the system to a...

3.3CVSS5.9AI score0.00158EPSS
Exploits0References4Affected Software2
ATTACKERKB
ATTACKERKBadded 2026/03/26 8:6 p.m.2 views

CVE-2026-0967

A flaw was found in libssh. A remote attacker, by controlling client configuration files or knownhosts files, could craft specific hostnames that when processed by the matchpattern function can lead to inefficient regular expression backtracking. This can cause timeouts and resource exhaustion,...

5.5CVSS6AI score0.00223EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/03/26 8:6 p.m.3 views

CVE-2026-0967 Libssh: libssh: denial of service via inefficient regular expression processing

A flaw was found in libssh. A remote attacker, by controlling client configuration files or knownhosts files, could craft specific hostnames that when processed by the matchpattern function can lead to inefficient regular expression backtracking. This can cause timeouts and resource exhaustion,...

2.2CVSS6.5AI score0.00223EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/03/26 8:6 p.m.21 views

CVE-2026-0967 Libssh: libssh: denial of service via inefficient regular expression processing

A flaw was found in libssh. A remote attacker, by controlling client configuration files or knownhosts files, could craft specific hostnames that when processed by the matchpattern function can lead to inefficient regular expression backtracking. This can cause timeouts and resource exhaustion,...

2.2CVSS0.00223EPSS
Exploits0References5
AlpineLinux
AlpineLinuxadded 2026/03/26 8:6 p.m.3 views

CVE-2026-0967

A flaw was found in libssh. A remote attacker, by controlling client configuration files or knownhosts files, could craft specific hostnames that when processed by the matchpattern function can lead to inefficient regular expression backtracking. This can cause timeouts and resource exhaustion,...

5.5CVSS5.9AI score0.00223EPSS
Exploits0
CVE
CVEadded 2026/03/26 8:6 p.m.30 views

CVE-2026-0967

CVE-2026-0967 describes a denial-of-service in libssh where an attacker can craft hostnames via client config or known_hosts files that, when processed by match_pattern(), trigger inefficient regular expression backtracking. The result is timeouts and resource exhaustion on the client side. Publi...

5.5CVSS5.8AI score0.00223EPSS
Exploits0References5Affected Software2
ATTACKERKB
ATTACKERKBadded 2026/03/26 8:6 p.m.1 views

CVE-2026-0968

A flaw was found in libssh in which a malicious SFTP SSH File Transfer Protocol server can exploit this by sending a malformed 'longname' field within an SSHFXPNAME message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can...

3.1CVSS6AI score0.00442EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/03/26 8:6 p.m.2 views

CVE-2026-0968 Libssh: libssh: denial of service due to malformed sftp message

A flaw was found in libssh in which a malicious SFTP SSH File Transfer Protocol server can exploit this by sending a malformed 'longname' field within an SSHFXPNAME message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can...

3.1CVSS6.4AI score0.00442EPSS
Exploits0References5
Rows per page
Query Builder