Libssh

4 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-3731 MEDIUM PATCH This Month

Out-of-bounds read in libssh versions up to 0.11.3 allows remote attackers to cause denial of service by manipulating the idx argument in the SFTP extension name handler functions. The vulnerability resides in the sftp_extensions_get_name and sftp_extensions_get_data functions, enabling unauthenticated attackers to trigger memory access violations without user interaction. Upgrading to libssh 0.11.4 or 0.12.0 resolves this issue.

Buffer Overflow Libssh
NVD VulDB
CVSS 3.1
5.3
EPSS
0.1%
CVE-2025-5351 MEDIUM PATCH This Month

A security vulnerability in A flaw (CVSS 6.5). Remediation should follow standard vulnerability management procedures.

Information Disclosure Ubuntu Debian Libssh Enterprise Linux +3
NVD
CVSS 3.1
6.5
EPSS
0.1%
CVE-2025-5372 MEDIUM PATCH This Month

A security vulnerability in libssh (CVSS 5.0). Remediation should follow standard vulnerability management procedures.

OpenSSL Information Disclosure Ubuntu Debian Openshift Container Platform +4
NVD
CVSS 3.1
5.0
EPSS
0.1%
CVE-2025-5318 HIGH PATCH This Week

CVE-2025-5318 is an out-of-bounds read vulnerability in libssh versions before 0.11.2 caused by an incorrect comparison check in the sftp_handle function that allows authenticated remote attackers to access memory beyond the valid handle list and retrieve invalid pointers for further processing. This vulnerability enables exposure of sensitive information or denial of service, with a CVSS score of 8.1 indicating high severity. The vulnerability requires authentication and network access but has high confidentiality and availability impact.

Buffer Overflow Enterprise Linux Openshift Container Platform Libssh Redhat +1
NVD
CVSS 3.1
8.1
EPSS
0.1%
CVE-2026-3731
EPSS 0% CVSS 5.3
MEDIUM PATCH This Month

Out-of-bounds read in libssh versions up to 0.11.3 allows remote attackers to cause denial of service by manipulating the idx argument in the SFTP extension name handler functions. The vulnerability resides in the sftp_extensions_get_name and sftp_extensions_get_data functions, enabling unauthenticated attackers to trigger memory access violations without user interaction. Upgrading to libssh 0.11.4 or 0.12.0 resolves this issue.

Buffer Overflow Libssh
NVD VulDB
CVE-2025-5351
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

A security vulnerability in A flaw (CVSS 6.5). Remediation should follow standard vulnerability management procedures.

Information Disclosure Ubuntu Debian +5
NVD
CVE-2025-5372
EPSS 0% CVSS 5.0
MEDIUM PATCH This Month

A security vulnerability in libssh (CVSS 5.0). Remediation should follow standard vulnerability management procedures.

OpenSSL Information Disclosure Ubuntu +6
NVD
CVE-2025-5318
EPSS 0% CVSS 8.1
HIGH PATCH This Week

CVE-2025-5318 is an out-of-bounds read vulnerability in libssh versions before 0.11.2 caused by an incorrect comparison check in the sftp_handle function that allows authenticated remote attackers to access memory beyond the valid handle list and retrieve invalid pointers for further processing. This vulnerability enables exposure of sensitive information or denial of service, with a CVSS score of 8.1 indicating high severity. The vulnerability requires authentication and network access but has high confidentiality and availability impact.

Buffer Overflow Enterprise Linux Openshift Container Platform +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy