Libssh2
This hub aggregates every CVE we track for Libssh2, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.
24
CVEs tracked
1
Critical
11
High
0
In CISA KEV
Severity distribution
HIGH11MEDIUM11LOW1CRITICAL1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
4
5
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Libssh2.
- CVE-2026-58051libssh2 - Free of Uninitialized Pointer in publickey List Cleanup6.5
- CVE-2026-58050libssh2 - Integer Overflow in publickey Subsystem Attribute Allocation7.0
- CVE-2025-15661libssh2 - Heap Buffer Over-read via sftp_symlink() in sftp.c6.5
- CVE-2026-55200libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c8.1
- CVE-2026-55199libssh2 - Pre-Authentication DoS via SSH_MSG_EXT_INFO Handler5.9
- BDU:2026-06217Уязвимость компонента src/kex.c библиотеки реализации протокола SSH2 Libssh2, позволяющая нарушителю получить доступ к конфиденциальным данным3.7
- BDU:2026-06210Уязвимость функции _libssh2_ntohu32() библиотеки реализации протокола SSH2 Libssh2, позволяющая нарушителю вызвать отказ в обслуживании4.8
- BDU:2026-06225Уязвимость функции _libssh2_packet_add() компонента packet.c библиотеки реализации протокола SSH2 Libssh2, позволяющая нарушителю вызвать отказ в обслуживании5.9
- CVE-2026-7598libssh2 userauth.c userauth_password integer overflow7.3
- CVE-2023-48795The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (fr...5.9
- CVE-2020-22218An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory.7.5
- CVE-2019-17498In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary (out-of-bounds) offset for a...8.1
- CVE-2019-13115In libssh2 before 1.9.0, kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c has an integer overflow that could lead to an out-of-bounds read in the way packets are read from the ...8.1
- CVE-2019-3856An integer overflow flaw, which could lead to an out of bounds write, was discovered in libssh2 before 1.8.1 in the way keyboard prompt requests are parsed. A remote attacker who compromises a SSH ...8.8
- CVE-2019-3857An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way SSH_MSG_CHANNEL_REQUEST packets with an exit signal are parsed. A remote attack...8.8
Product normalization is registry-driven with AI assist and human review. How it works