216.73.216.133

CVE-2026-55199

· Published 17/06/2026 22:17 · Author: The MITRE Corporation

Labels: CVE-2026-55199 2026-06-17CVE-2026-55199CWE-835[email protected]

Essential information

Published
17/06/2026 22:17
Modified
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
5.9 MEDIUM (v3.1) 8.2 HIGH (v4.0)
CISA KEV
No
CWE
CWE-835
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS metrics

Description

libssh2 through 1.11.1, fixed in commit 1762685, contains a pre-authentication denial of service vulnerability in the SSH_MSG_EXT_INFO handler in src/packet.c that allows a malicious SSH server to cause a client CPU exhaustion loop by sending a crafted extension count value. A malicious server can set nr_extensions to 0xFFFFFFFF during key exchange, causing the client to spin in a tight CPU loop for over 60 seconds because return values from _libssh2_get_string() are unchecked and the session timeout does not apply to CPU-bound loops.

NVD status

NVD
View on NVD