CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-55200

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2_transport_read() that fails to enforce upper bounds on packet_length field. Remote attackers can send crafted SSH packets with excessively large packet_length values to corrupt heap memory and achieve remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 55.8%

CVSS Severity

CVSS v3 Score 8.1

References

Products affected by CVE-2026-55200

Libssh2 » Libssh2 » Version: N/A

cpe:2.3:a:libssh2:libssh2:-
Libssh2 » Libssh2 » Version: 0.1

cpe:2.3:a:libssh2:libssh2:0.1
Libssh2 » Libssh2 » Version: 0.10

cpe:2.3:a:libssh2:libssh2:0.10
Libssh2 » Libssh2 » Version: 0.11

cpe:2.3:a:libssh2:libssh2:0.11
Libssh2 » Libssh2 » Version: 0.12

cpe:2.3:a:libssh2:libssh2:0.12
Libssh2 » Libssh2 » Version: 0.13

cpe:2.3:a:libssh2:libssh2:0.13
Libssh2 » Libssh2 » Version: 0.14

cpe:2.3:a:libssh2:libssh2:0.14
Libssh2 » Libssh2 » Version: 0.15

cpe:2.3:a:libssh2:libssh2:0.15
Libssh2 » Libssh2 » Version: 0.16

cpe:2.3:a:libssh2:libssh2:0.16
Libssh2 » Libssh2 » Version: 0.17

cpe:2.3:a:libssh2:libssh2:0.17
Libssh2 » Libssh2 » Version: 0.18

cpe:2.3:a:libssh2:libssh2:0.18
Libssh2 » Libssh2 » Version: 0.3

cpe:2.3:a:libssh2:libssh2:0.3
Libssh2 » Libssh2 » Version: 0.5

cpe:2.3:a:libssh2:libssh2:0.5
Libssh2 » Libssh2 » Version: 0.6

cpe:2.3:a:libssh2:libssh2:0.6
Libssh2 » Libssh2 » Version: 0.7

cpe:2.3:a:libssh2:libssh2:0.7
Libssh2 » Libssh2 » Version: 0.8

cpe:2.3:a:libssh2:libssh2:0.8
Libssh2 » Libssh2 » Version: 1.0

cpe:2.3:a:libssh2:libssh2:1.0
Libssh2 » Libssh2 » Version: 1.1

cpe:2.3:a:libssh2:libssh2:1.1
Libssh2 » Libssh2 » Version: 1.10.0

cpe:2.3:a:libssh2:libssh2:1.10.0
Libssh2 » Libssh2 » Version: 1.2

cpe:2.3:a:libssh2:libssh2:1.2
Libssh2 » Libssh2 » Version: 1.2.1

cpe:2.3:a:libssh2:libssh2:1.2.1
Libssh2 » Libssh2 » Version: 1.2.2

cpe:2.3:a:libssh2:libssh2:1.2.2
Libssh2 » Libssh2 » Version: 1.2.3

cpe:2.3:a:libssh2:libssh2:1.2.3
Libssh2 » Libssh2 » Version: 1.2.4

cpe:2.3:a:libssh2:libssh2:1.2.4
Libssh2 » Libssh2 » Version: 1.2.5

cpe:2.3:a:libssh2:libssh2:1.2.5
Libssh2 » Libssh2 » Version: 1.2.6

cpe:2.3:a:libssh2:libssh2:1.2.6
Libssh2 » Libssh2 » Version: 1.2.7

cpe:2.3:a:libssh2:libssh2:1.2.7
Libssh2 » Libssh2 » Version: 1.2.8

cpe:2.3:a:libssh2:libssh2:1.2.8
Libssh2 » Libssh2 » Version: 1.2.9

cpe:2.3:a:libssh2:libssh2:1.2.9
Libssh2 » Libssh2 » Version: 1.3.0

cpe:2.3:a:libssh2:libssh2:1.3.0
Libssh2 » Libssh2 » Version: 1.4.0

cpe:2.3:a:libssh2:libssh2:1.4.0
Libssh2 » Libssh2 » Version: 1.4.1

cpe:2.3:a:libssh2:libssh2:1.4.1
Libssh2 » Libssh2 » Version: 1.4.2

cpe:2.3:a:libssh2:libssh2:1.4.2
Libssh2 » Libssh2 » Version: 1.4.3

cpe:2.3:a:libssh2:libssh2:1.4.3
Libssh2 » Libssh2 » Version: 1.5.0

cpe:2.3:a:libssh2:libssh2:1.5.0
Libssh2 » Libssh2 » Version: 1.6.0

cpe:2.3:a:libssh2:libssh2:1.6.0
Libssh2 » Libssh2 » Version: 1.7.0

cpe:2.3:a:libssh2:libssh2:1.7.0
Libssh2 » Libssh2 » Version: 1.8.0

cpe:2.3:a:libssh2:libssh2:1.8.0
Libssh2 » Libssh2 » Version: 1.8.1

cpe:2.3:a:libssh2:libssh2:1.8.1
Libssh2 » Libssh2 » Version: 1.8.2

cpe:2.3:a:libssh2:libssh2:1.8.2
Libssh2 » Libssh2 » Version: 1.9.0

cpe:2.3:a:libssh2:libssh2:1.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-55200

Products

Pricing

Contact Us