It was discovered that libssh2 incorrectly handled the sftp_symlink() function. A malicious SSH server or machine-in-the-middle attacker could possibly use this issue to obtain sensitive information or cause a denial of service. (CVE-2025-15661) It was discovered that libssh2 had a...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

USN-8486-1: libssh2 vulnerabilities

VERWANDTEARTIKEL

CVE-2026-39948

BlueHammer Vulnerability Exploited in Ransomware Attacks

Critical Progress Kemp LoadMaster Vulnerability Enables Pre-Auth Remote Code Execution

CVE-2026-13474 - Denial of service via malformed HTTP/2 requests

CVE-2026-58116 - LLaMA-Factory 0.9.5 Remote Code Execution via WebUI Model Path

CVE-2026-6556 - @fastify/express vulnerable to middleware bypass via non-string mount paths in prefixed plugins