CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Amazon•added 2026/06/08 12:0 a.m.•16 views

Important: runfinch-finch

Issue Overview: An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection's internal state a...

10CVSS5.8AI score0.00392EPSS

Amazon•added 2026/06/08 12:0 a.m.•15 views

Important: nerdctl

Issue Overview: Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service. CVE-2026-25680 Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt ...

10CVSS6.1AI score0.00392EPSS

RedhatCVE•added 2026/06/05 7:44 p.m.•7 views

CVE-2026-39828

A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate...

8.8CVSS5.4AI score0.00173EPSS

Exploits0References7

Github Security Blog•added 2026/05/29 7:39 p.m.•12 views

russh server userauth state is not reset when authentication principal changes

Summary The russh server authentication path keeps internal userauth state across SSHMSGUSERAUTHREQUEST messages without separating that state when the request principal changes. RFC 4252 allows the user name and service name fields to change between authentication requests. The issue is not that...

5.3CVSS5.8AI score0.00362EPSS

Exploits0References3Affected Software1

OSV•added 2026/05/29 7:39 p.m.•4 views

GHSA-HPV4-5H6F-WQR3 russh server userauth state is not reset when authentication principal changes

5.3CVSS5.8AI score0.00362EPSS

Exploits0References3

Positive Technologies•added 2026/05/29 12:0 a.m.•9 views

PT-2026-45018

Name of the Vulnerable Software and Affected Versions Russh versions 0.34.0-beta.1 through 0.60.x Description The server authentication path in the Russh library fails to separate internal user authentication state when the request principal changes across SSH MSG USERAUTH REQUEST messages...

5.3CVSS5.5AI score0.00362EPSS

Exploits0References3

Snyk•added 2026/05/22 5:32 a.m.•7 views

Incorrect Authorization

Overview github.com/golang/crypto/ssh is a SSH client and server Affected versions of this package are vulnerable to Incorrect Authorization. When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially...

8.8CVSS5.8AI score0.00173EPSS

Exploits0References2

NVD•added 2026/05/22 4:16 a.m.•10 views

CVE-2026-39828

When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError...

6.3CVSS0.00173EPSS

OSV•added 2026/05/22 4:16 a.m.•6 views

UBUNTU-CVE-2026-39828

CVE•added 2026/05/22 2:31 a.m.•40 views

Exploits0References6

CVE-2026-39828

CVE-2026-39828 affects the SSH handling in golang.org/x/crypto/ssh. When an SSH server authentication callback returns PartialSuccessError with non-nil Permissions, the permissions are discarded, potentially bypassing certificate restrictions (e.g., force-command) after 2FA. Returning non-nil Per...

Exploits0References4Affected Software1

Debian CVE•added 2026/05/22 2:31 a.m.•5 views

CVE-2026-39828

Cvelist•added 2026/05/22 2:31 a.m.•36 views

CVE-2026-39828 Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh

0.00173EPSS

EUVD•added 2026/05/22 2:31 a.m.•8 views

EUVD-2026-31394

Vulnrichment•added 2026/05/22 2:31 a.m.•7 views

CVE-2026-39828 Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh

5.8AI score0.00173EPSS

OSV•added 2026/05/22 2:8 a.m.•4 views

GO-2026-5014 Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh

CNNVD•added 2026/05/22 12:0 a.m.•7 views

Exploits0References3

Google Go 安全漏洞

Google Go is a static, strongly typed, compiled, concurrent programming language with garbage collection features from the American company Google. There is a security vulnerability in Google Go, where non-empty permissions are silently discarded when an Authentication callback returns...

Positive Technologies•added 2026/05/22 12:0 a.m.•11 views

Exploits0References5

PT-2026-42707

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An issue exists where an SSH server authentication callback returning PartialSuccessError with non-nil Permissions caused those permissions to be silently...