Description
A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauth_password of the file src/userauth.c. Such manipulation of the argument username_len/password_len leads to integer overflow. The attack may be launched remotely. The name of the patch is 256d04b60d80bf1190e96b0ad1e91b2174d744b1. A patch should be applied to remediate this issue.
References (6)
Core 6
Core References
Patch issue-tracking
patch
https://github.com/libssh2/libssh2/pull/1858
Vdb Entry, Technical Description vdb-entry
technical-description
VDB-360555 | libssh2 userauth.c userauth_password integer overflow
https://vuldb.com/vuln/360555
Signature, Permissions Required signature
permissions-required
VDB-360555 | CTI Indicators (IOB, IOC, IOA)
https://vuldb.com/vuln/360555/cti
Third Party Advisory third-party-advisory
Submit #805564 | libssh2 <= 1.11.1 Integer Overflow
https://vuldb.com/submit/805564
Product product
https://github.com/libssh2/libssh2/
Scores
CVSS v3
7.3
EPSS
0.0036
EPSS Percentile
27.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-189
CWE-190
Status
published
Products (3)
None/libssh2
1.11.0
None/libssh2
1.11.1
libssh2/libssh2
< 1.11.1
Published
May 01, 2026
Tracked Since
May 02, 2026