exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2026-0968

около 2 месяцев назад

[Denial of Service due to malformed SFTP message]

EPSS: Низкий

CVE-2026-0968

около 2 месяцев назад

A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can exploit this by sending a malformed 'longname' field within an `SSH_FXP_NAME` message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can cause unexpected behavior or lead to a denial of service (DoS) due to application crashes.

CVSS3: 3.1

EPSS: Низкий

CVE-2026-0968

[Denial of Service due to malformed SFTP message]

EPSS: Низкий

GHSA-6w3m-r3qq-cr2h

4 дня назад

A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can exploit this by sending a malformed 'longname' field within an `SSH_FXP_NAME` message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can cause unexpected behavior or lead to a denial of service (DoS) due to application crashes.

CVSS3: 3.1

EPSS: Низкий

SUSE-SU-2026:0779-1

28 дней назад

Security update for libssh

EPSS: Низкий

SUSE-SU-2026:0778-1

28 дней назад

Security update for libssh

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	Опубликовано
CVE-2026-0968 [Denial of Service due to malformed SFTP message]		около 2 месяцев назад
CVE-2026-0968 A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can exploit this by sending a malformed 'longname' field within an `SSH_FXP_NAME` message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can cause unexpected behavior or lead to a denial of service (DoS) due to application crashes.	CVSS3: 3.1	около 2 месяцев назад
CVE-2026-0968 [Denial of Service due to malformed SFTP message]		-
GHSA-6w3m-r3qq-cr2h A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can exploit this by sending a malformed 'longname' field within an `SSH_FXP_NAME` message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can cause unexpected behavior or lead to a denial of service (DoS) due to application crashes.	CVSS3: 3.1	4 дня назад
SUSE-SU-2026:0779-1 Security update for libssh		28 дней назад
SUSE-SU-2026:0778-1 Security update for libssh		28 дней назад

Уязвимостей на страницу