Filter

Software

libssh libssh
15
libssh
13
libssh2
3

Canonical Ubuntu LinuxOS Command Injection

critical
9.3
First published (updated )
CVE-2019-14889

ubuntu/libsshA vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A m…

critical
9.1
First published (updated )
CVE-2018-10933

IBM QRadar SIEMNull Pointer Dereference

high
7.5
First published (updated )
CVE-2020-16135

libsshDouble Free

high
7.5
First published (updated )
CVE-2012-6063

libsshBuffer Overflow

high
7.5
First published (updated )
CVE-2012-4560

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

libsshBuffer Overflow, Integer Overflow

high
7.5
First published (updated )
CVE-2012-4562

Ubuntu LinuxNull Pointer Dereference

high
7.5
First published (updated )
CVE-2015-3146

libsshDouble Free

medium
6.8
First published (updated )
CVE-2012-4559

redhat/libsshNull Pointer Dereference

medium
6.5
First published (updated )
CVE-2023-1667

libssh libsshThe authentication check of the connecting client can be bypassed in the function `pki_verify_data_s…

medium
6.5
First published (updated )
CVE-2023-2283

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Fedoraproject FedoraThe SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them i…

medium
6.5
First published (updated )
CVE-2021-3634

libsshProcessing sftp server read may cause null dereference

medium
6.5
First published (updated )
CVE-2023-3603

Red Hat OpenStack PlatformImpact of Terrapin SSH Attack

medium
6
First published (updated )
CVE-2023-48795

Ubuntu LinuxInfoleak

medium
5.9
First published (updated )
CVE-2016-0739

ubuntu/libsshNull Pointer Dereference

medium
5.3
First published (updated )
CVE-2020-1730

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/libsshLibssh: missing checks for return values for digests

medium
5.3
EPSS
0.06%
First published (updated )
CVE-2023-6918

libsshThe (1) publickey_make_dss, (2) publickey_make_rsa, (3) signature_from_string, (4) ssh_do_sign, and …

medium
5
First published (updated )
CVE-2012-4561

libssh libsshDouble Free

medium
5
First published (updated )
CVE-2014-8132

redhat/libsshLibssh: proxycommand/proxyjump features allow injection of malicious code through hostname

medium
4.8
EPSS
0.04%
First published (updated )
CVE-2023-6004

libsshNull Pointer Dereference

medium
4.3
First published (updated )
CVE-2013-0176

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

libsshThe RAND_bytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the…

low
1.9
First published (updated )
CVE-2014-0017

CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)

First published (updated )
https://seclists.org/oss-sec/2023/q4/297

CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)

First published (updated )
https://seclists.org/oss-sec/2023/q4/300

CVE-2023-51385, CVE-2023-6004: OpenSSH, libssh: Security weakness in ProxyCommand handling

First published (updated )
https://seclists.org/oss-sec/2023/q4/338

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203