Analyzed
1 day
ago.
based on code collected
2 days
ago.
Major Versions
click and drag to zoom
Security Vulnerabilities for Version:
Severities:
Type
|
Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
|---|---|---|---|---|---|
| CVE-2026-35414 | BDSA-2026-7654 | High | Apr 02, 2026 | OpenSSH before 10.3 mishandles the authorized_keys principals option in uncommon scenarios involving a principals list in conjunction with a Certificat more... |
10.2, 9.8, 9.7, 9.5, 9.2, 8.9, 8.8, 7.7, 7.2, 7.1
|
| CVE-2026-35388 | BDSA-2026-8035 | Low | Apr 02, 2026 | OpenSSH before 10.3 omits connection multiplexing confirmation for proxy-mode multiplexing sessions. |
10.2, 9.8, 9.7, 9.5, 9.2, 8.9, 8.8, 7.7, 7.2, 7.1
|
| CVE-2026-35387 | BDSA-2026-8032 | Medium | Apr 02, 2026 | OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA algorithm in PubkeyAcceptedAlgorithms or HostbasedAcceptedAlgorithms is m more... |
10.2, 9.8, 9.7, 9.5, 9.2, 8.9, 8.8, 7.7, 7.2, 7.1
|
| CVE-2026-35386 | BDSA-2026-8033 | High | Apr 02, 2026 | In OpenSSH before 10.3, command execution can occur via shell metacharacters in a username within a command line. This requires a scenario where the us more... |
10.2, 9.8, 9.7, 9.5, 9.2, 8.9, 8.8, 7.7, 7.2, 7.1
|
| CVE-2026-35385 | BDSA-2026-8029 | High | Apr 02, 2026 | In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to some users' expectations, if the download is more... |
10.2, 9.8, 9.7, 9.5, 9.2, 8.9, 8.8, 7.7, 7.2, 7.1
|
