Published: 22/08/2023 Updated: 06/10/2023

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 0

An issue exists in function _libssh2_packet_add in libssh2 1.10.0 allows malicious users to access out of bounds memory.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libssh2 libssh2 1.10.0

Synopsis Moderate: libssh2 security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for libssh2 is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a se ...

An issue was discovered in function _libssh2_packet_add in libssh2 1100 allows attackers to access out of bounds memory (CVE-2020-22218) ...

DescriptionThe MITRE CVE dictionary describes this issue as: An issue was discovered in function _libssh2_packet_add in libssh2 1100 allows attackers to access out of bounds memory ...

Critical Infrastructure Sectors: Critical Manufacturing

CWE-787 https://github.com/libssh2/libssh2/pull/476 https://lists.debian.org/debian-lts-announce/2023/09/msg00006.html https://security.netapp.com/advisory/ntap-20231006-0002/https://access.redhat.com/errata/RHSA-2023:5615 https://nvd.nist.gov https://www.cisa.gov/news-events/ics-advisories/icsa-23-348-10 https://alas.aws.amazon.com/AL2/ALAS-2023-2257.html

CVE-2020-22218

Vulnerability Summary

Vendor Advisories

ICS Advisories

References

Vulmon Search

About

Products

Connect