VDB
DEBIAN-CVE-2019-3855
DEBIAN-CVE-2019-3855
PUBLISHED
CVSS 8.800000190734863 HIGH
An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way packets are read from the server. A remote attacker who compromises a SSH server may be able to execute code on the client system when a user connects to the server.
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | libssh2 | 0, 0, 0 |
| Debian:14 | libssh2 | 0, 0, 0 |
| Debian:13 | libssh2 | 0, 0, 0 |
| Debian:12 | libssh2 | 0, 0, 0 |
Timeline
- Mar 21, 2019 CVE Published
- Apr 28, 2026 CVE Updated