VDB
DEBIAN-CVE-2026-0965
DEBIAN-CVE-2026-0965
PUBLISHED
CVSS 3.299999952316284 LOW
A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service (DoS) by causing the system to try and access dangerous files, such as block devices or large system files, which can disrupt normal operations.
Risk Scores
CVSS 3.0
3.299999952316284
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | libssh | 0.10.5-3, 0.10.5-3, 0.10.6-0 |
| Debian:11 | libssh | 0.11.1-2, 0.11.2-1, 0.11.3-1 |
| Debian:14 | libssh | 0, 0.11.3-1, 0 |
| Debian:13 | libssh | 0, 0.11.2-1, 0.11.2-1 |
Exploit Intelligence
- 8051-2.json (github-poc)
Timeline
- Mar 26, 2026 CVE Published
- Apr 28, 2026 CVE Updated