Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw
A public proof-of-concept (PoC) has been released for CVE-2026-55200, a critical vulnerability in the libssh2 client-side SSH library. The flaw, with a…
A public proof-of-concept (PoC) has been released for CVE-2026-55200, a critical vulnerability in the libssh2 client-side SSH library. The flaw, with a…
CVE-2019-3855 was a similar integer overflow vulnerability in libssh2's transport read function, fixed in version 1.8.1. It also allowed a malicious server…
CVE-2026-55199 is a denial of service vulnerability in libssh2 with a CVSS 8.2 score. It can trap a connecting client in a…
CVE-2025-15661 is an SFTP heap over-read vulnerability in libssh2 with a CVSS 8.3 score.
NHS England Digital issued an advisory urging affected organizations to update libssh2 to address CVE-2026-55200.
libssh2 was identified as a relevant cybersecurity entity in recently ingested reporting. This profile is generated so related cyber news, CVEs, malware,…
curl is a common carrier of libssh2, making it a potential target for exploitation via CVE-2026-55200.
Git is another application that embeds libssh2, potentially exposing users to CVE-2026-55200.
PHP deployments often include libssh2, making them a common carrier for the vulnerability.
Debian has already released a repaired build of libssh2 in its testing branch to address CVE-2026-55200.