VDB
JLSEC-2026-73
JLSEC-2026-73
PUBLISHED
CVSS 4.300000190734863 MEDIUM
In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the...
Risk Scores
CVSS v3.1
4.300000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | OpenSSH_jll | 0, 0 |
Timeline
- Apr 9, 2026 CVE Published
- Apr 9, 2026 CVE Updated
References
- https://ftp.openbsd.org/pub/OpenBSD/patches/7.6/common/013_ssh.patch.sig url
- https://github.com/openssh/openssh-portable/commit/fc86875e6acb36401dfc1dfb6b628a9d1460f367 url
- https://lists.mindrot.org/pipermail/openssh-unix-dev/2025-April/041879.html url
- https://www.openssh.com/txt/release-10.0 url
- https://www.openssh.com/txt/release-7.4 url
- https://lists.debian.org/debian-lts-announce/2025/05/msg00008.html url
- https://security.netapp.com/advisory/ntap-20250425-0002/ url
- https://nvd.nist.gov/vuln/detail/CVE-2025-32728 url
- https://security.netapp.com/advisory/ntap-20250425-0002 url
- https://github.com/advisories/GHSA-26mg-p594-q328 url