CVE-2025-14821

< 0.12.0

A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of SSH (Secure Shell) c

7.8HIGH

CVE-2026-0968

<= 0.11.3

A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can exploit this by sending a malformed '

3.1LOW

CVE-2026-0967

<= 0.11.3

A flaw was found in libssh. A remote attacker, by controlling client configuration files or known_hosts files, could craft specifi

5.5MEDIUM

CVE-2026-0966

< 0.11.4

A flaw was found in libssh. The API function ssh_get_hexa() is vulnerable to a denial of service when processing zero-length inp

8.2HIGH

CVE-2026-0965

<= 0.11.3

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit

3.3LOW

CVE-2026-0964

< 0.11.4

A malicious SCP server can send unexpected paths that could make the client application override local files outside of working di

6.3MEDIUM

CVE-2026-3731

<= 0.11.3

A weakness has been identified in libssh up to 0.11.3. The impacted element is the function sftp_extensions_get_name/sftp_extensio

5.3MEDIUM

CVE-2025-5449

all versions

A flaw was found in the SFTP server message decoding logic of libssh. The issue occurs due to an incorrect packet length check tha

6.5MEDIUM

CVE-2025-8114

<= 0.11.2

A flaw was found in libssh, a library that implements the SSH protocol. When calculating the session ID during the key exchange (K

4.7MEDIUM

CVE-2025-5987

>= 0.10.0 and < 0.11.2

A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust the heap spa

8.1HIGH

CVE-2025-5351

>= 0.10.0 and < 0.11.2

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting c

6.5MEDIUM

CVE-2025-5372

< 0.11.2

A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the ssh_kdf() function responsible

5.0MEDIUM

CVE-2025-5318

< 0.11.2

A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle fun

8.1HIGH

CVE-2023-6004

>= 0.8.0 and < 0.9.8

A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump feature, users can exploit unchecked hostname syntax on the

4.8MEDIUM

CVE-2023-6918

>= 0.9.0 and < 0.9.8

A flaw was found in the libssh implements abstract layer for message digest (MD) operations implemented by different supported cry

3.7LOW

CVE-2023-48795

< 0.10.6

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attacker

5.9MEDIUM

CVE-2023-3603

< 0.8.9

A missing allocation check in sftp server processing read requests may cause a NULL dereference on low-memory conditions. The mali

3.1LOW

CVE-2023-2283

>= 0.9.1 and <= 0.9.6

A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_dat

6.5MEDIUM

CVE-2023-1667

>= 0.9.1 and <= 0.9.6

A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may allow an authenticated cli

6.5MEDIUM

CVE-2021-3634

>= 0.9.1 and < 0.9.6

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime

6.5MEDIUM

CVE-2020-16135

all versions

libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL.

5.9MEDIUM

CVE-2020-1730

>= 0.8.0 and < 0.8.9

A flaw was found in libssh versions before 0.8.9 and before 0.9.4 in the way it handled AES-CTR (or DES ciphers if enabled) cipher

5.3MEDIUM

CVE-2019-14889

< 0.8.8

A flaw was found with the libssh API function ssh_scp_new() in versions before 0.9.3 and before 0.8.8. When the libssh SCP client

8.8HIGH

CVE-2018-10933

>= 0.6.0 and < 0.7.6

A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create c

9.1CRITICAL

CVE-2016-0739

<= 0.7.2

libssh before 0.7.3 improperly truncates ephemeral secrets generated for the (1) diffie-hellman-group1 and (2) diffie-hellman-grou

5.9MEDIUM

CVE-2015-3146

<= 0.6.4

The (1) SSH_MSG_NEWKEYS and (2) SSH_MSG_KEXDH_REPLY packet handlers in package_cb.c in libssh before 0.6.5 do not properly validat

7.5HIGH

CVE-2014-8132

all versions

Double free vulnerability in the ssh_packet_kexinit function in kex.c in libssh 0.5.x and 0.6.x before 0.6.4 allows remote attacke

CVE-2014-0017

<= 0.6.2

The RAND_bytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-r

CVE-2013-0176

<= 0.5.3

The publickey_from_privatekey function in libssh before 0.5.4, when no algorithm is matched during negotiations, allows remote att

CVE-2012-6063

<= 0.5.2

Double free vulnerability in the sftp_mkdir function in sftp.c in libssh before 0.5.3 allows remote attackers to cause a denial of

CVE-2012-4562

<= 0.5.2

Multiple integer overflows in libssh before 0.5.3 allow remote attackers to cause a denial of service (infinite loop or crash) and

CVE-2012-4561

<= 0.5.2

The (1) publickey_make_dss, (2) publickey_make_rsa, (3) signature_from_string, (4) ssh_do_sign, and (5) ssh_sign_session_id functi

CVE-2012-4560

<= 0.5.2

Multiple buffer overflows in libssh before 0.5.3 allow remote attackers to cause a denial of service (crash) or possibly execute a

CVE-2012-4559

<= 0.5.2

Multiple double free vulnerabilities in the (1) agent_sign_data function in agent.c, (2) channel_request function in channels.c, (