VDB

DEBIAN-CVE-2026-0965

DEBIAN-CVE-2026-0965 PUBLISHED CVSS 3.299999952316284 LOW

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service (DoS) by causing the system to try and access dangerous files, such as block devices or large system files, which can disrupt normal operations.

Risk Scores

CVSS 3.0
3.299999952316284
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Affected Products

VendorProductVersions
Debian:12libssh0.10.5-3, 0.10.5-3, 0.10.6-0
Debian:11libssh0.11.1-2, 0.11.2-1, 0.11.3-1
Debian:14libssh0, 0.11.3-1, 0
Debian:13libssh0, 0.11.2-1, 0.11.2-1

Exploit Intelligence

Timeline

  • Mar 26, 2026 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›