libssh

Security Risk Profile

/100

low

Security Risk Score

Comprehensive risk assessment based on 54 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from October 30, 2012 to present

Total CVEs

Critical+High

Exploited

Unpatched

Threat Assessment

Avg CVSS

5.3

Base severity

Avg EPSS

Exploit probability

Unpatched

Critical/High

Risk Level

29/100

low

Severity Distribution

Critical

High

Medium

Low

Exploit Likelihood

>50% chance

20-50%

5-20%

<5%

Age Distribution

Common Weaknesses (CWE)

Null Pointer Dereference

Integer Overflow

Double Free

Buffer Overflow

Path Traversal

Most Affected Products

1. libssh libssh125

2. redhat Enterprise Linux39

3. Fedoraproject Fedora23

4. Canonical Ubuntu Linux22

5. redhat/libssh14

Recent Vulnerabilities

See more →

CVE-2026-3731

CVSS 6.9EPSS 0%medium

libssh SFTP Extension Name sftp.c sftp_extensions_get_data out-of-bounds

3/8/2026

CVE-2026-0968

CVSS 3.1low

Libssh: libssh: denial of service due to malformed sftp message

Libssh: libssh: denial of service via inefficient regular expression processing

2/4/2026

CVE-2026-0965

CVSS 3.3low

Libssh: libssh: denial of service via improper configuration file handling

Libssh: improper sanitation of paths received from scp servers

2/4/2026

CVE-2026-0966

CVSS 8.2high

Libssh: libssh: denial of service via zero-length input in ssh_get_hexa()

1/26/2026

CVE-2025-14821

CVSS 7.8high

Libssh: libssh: insecure default configuration leads to local man-in-the-middle attacks on windows

Monitor libssh in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free Trial Book a Demo

libssh

Security Risk Score

Threat Assessment

Severity Distribution

Exploit Likelihood

Age Distribution

Common Weaknesses (CWE)

Most Affected Products

Recent Vulnerabilities

Monitor libssh in Real-Time

Monitor Your Software Stack in Real-Time