Which versions of libssh2 are affected by CVE-2026-7598?

libssh2 versions up to 1.11.1 contain an integer overflow vulnerability in SSH password authentication that allows unauthenticated remote attackers to corrupt memory and potentially breach…. A patch is available.

libssh2 CVE-2026-7598

Q: What is the CVSS score of CVE-2026-7598?

CVE-2026-7598 has a CVSS 4.0 base score of 6.9 (Medium). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-26722 MEDIUM

Integer Overflow or Wraparound (CWE-190)

2026-05-01 VulDB

Buffer Overflow Integer Overflow Red Hat

6.9

CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

Severity Changed

May 01, 2026 - 22:22 NVD

HIGH MEDIUM

CVSS changed

May 01, 2026 - 22:22 NVD

7.3 (HIGH) 6.9 (MEDIUM)

Source Code Evidence Fetched

May 01, 2026 - 22:15 vuln.today

Analysis Generated

May 01, 2026 - 22:15 vuln.today

EUVD ID Assigned

May 01, 2026 - 21:46 euvd

EUVD-2026-26722

Analysis Generated

May 01, 2026 - 21:46 vuln.today

Patch released

May 01, 2026 - 21:46 nvd

Patch available

CVE Published

May 01, 2026 - 21:30 nvd

MEDIUM 6.9

DescriptionNVD

A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauth_password of the file src/userauth.c. Such manipulation of the argument username_len/password_len leads to integer overflow. The attack may be launched remotely. The name of the patch is 256d04b60d80bf1190e96b0ad1e91b2174d744b1. A patch should be applied to remediate this issue.

AnalysisAI

Integer overflow in libssh2 up to version 1.11.1 allows remote unauthenticated attackers to cause memory corruption during SSH password authentication. The vulnerability exists in the userauth_password function where inadequate bounds checking on username_len and password_len parameters can trigger integer overflow when calculating buffer sizes, potentially leading to confidentiality breach, integrity compromise, and service disruption. …

RemediationAI

Within 24 hours: inventory all systems and applications using libssh2 and document current versions. Within 7 days: apply vendor patch to libssh2 1.11.2 or later on all affected systems; prioritize systems accepting external SSH connections. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

More from same product – last 7 days

CVE-2026-9277 HIGH This Week

8.1 May 22

Command injection in the shell-quote npm package allows attackers who can influence object-token inputs to inject arbitr

CVE-2026-9256 HIGH This Week

8.1 May 22

Heap buffer overflow in NGINX Plus and NGINX Open Source ngx_http_rewrite_module allows unauthenticated remote attackers

Vendor StatusVendor

CVE-2026-7598 vulnerability details – vuln.today

Back

libssh2 CVE-2026-7598

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

More from same product – last 7 days

Vendor StatusVendor

Share

libssh2 CVE-2026-7598

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

More from same product – last 7 days

Vendor StatusVendor

Share

External POC / Exploit Code