CVE-2026-0965
3.3
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Summary
A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service (DoS) by causing the system to try and access dangerous files, such as block devices or large system files, which can disrupt normal operations.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 | 0:0.12.0-2.el10 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9 | 0:0.10.4-18.el9 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9 | 0:0.10.4-18.el9 < * | unaffected |
Weaknesses
- CWE-73: External Control of File Name or Path
Workarounds
Ensure the client and server are using only regular files as configuration.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://access.redhat.com/errata/RHSA-2026:18160
- https://access.redhat.com/errata/RHSA-2026:18683
- https://access.redhat.com/security/cve/CVE-2026-0965
- https://bugzilla.redhat.com/show_bug.cgi?id=2436980
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.