Is Null Pointer Dereference affected by EUVD-2026-16335?

CVE-2026-0968 is a low-severity vulnerability in A flaw involving null pointer dereference (CVSS 3.1). The limited severity suggests constrained impact, typically requiring specific conditions or local access for exploitation. Apply vendor updates when available as part of routine maintenance.

EUVD-2026-16335

| CVE-2026-0968 CRITICAL

2026-03-26 redhat

GHSA-6w3m-r3qq-cr2h

9.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Patch Released

Mar 31, 2026 - 21:13 nvd

Patch available

EUVD ID Assigned

Mar 26, 2026 - 20:31 euvd

EUVD-2026-16335

Analysis Generated

Mar 26, 2026 - 20:31 vuln.today

CVE Published

Mar 26, 2026 - 20:06 nvd

CRITICAL 9.8

Description

A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can exploit this by sending a malformed 'longname' field within an `SSH_FXP_NAME` message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can cause unexpected behavior or lead to a denial of service (DoS) due to application crashes.

Analysis

Libssh versions used across Red Hat Enterprise Linux 6-10 and OpenShift Container Platform 4 are vulnerable to a null pointer dereference when processing malformed 'longname' fields in SFTP SSH_FXP_NAME messages, allowing unauthenticated remote attackers to trigger denial of service through application crashes. The attack requires user interaction and high attack complexity (CVSS 3.1, CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L) but affects a widely deployed SSH library; no public exploit identified at time of analysis.

Remediation

During next maintenance window: Apply vendor patches when convenient. Verify null pointer dereference controls are in place.

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +49

POC: 0

Vendor Status

Ubuntu

Priority: Medium

libssh

Release	Status	Version
upstream	needs-triage	-
jammy	released	0.9.6-2ubuntu0.22.04.6
noble	released	0.10.6-2ubuntu0.3
questing	released	0.11.2-1ubuntu0.2
bionic	released	0.8.0~20170825.94fa1e38-1ubuntu0.7+esm6
focal	released	0.9.3-2ubuntu2.5+esm3
xenial	released	0.6.3-4.3ubuntu0.6+esm4

USN-8051-1 USN-8051-2

Debian

Bug #1127693

libssh

Release	Status	Fixed Version	Urgency
bullseye	vulnerable	0.9.8-0+deb11u1	-
bullseye (security)	vulnerable	0.9.8-0+deb11u2	-
bookworm	vulnerable	0.10.6-0+deb12u2	-
bookworm (security)	vulnerable	0.10.6-0+deb12u1	-
trixie	vulnerable	0.11.2-1+deb13u1	-
forky	vulnerable	0.11.3-1	-
sid	fixed	0.12.0-3	-
(unstable)	fixed	0.12.0-1	-

EUVD-2026-16335 vulnerability details – vuln.today

Back

EUVD-2026-16335

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Analysis

Full analysis requires sign-in

Priority Score

Vendor Status

Ubuntu

Debian

Share

EUVD-2026-16335

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Vendor Status

Ubuntu

Debian

Share

External POC / Exploit Code