Browse all 9 CVE security advisories affecting The libssh2 Project. AI-powered Chinese analysis, POCs, and references for each vulnerability.
The libssh2 Project provides a C library implementing the SSH protocol for secure remote connections and file transfers. Historically, it has been susceptible to remote code execution vulnerabilities through buffer overflows and integer overflows, as well as denial-of-service flaws via memory exhaustion. Privilege escalation risks have also been documented in certain configurations. With nine CVEs on record, the project has faced security challenges including memory corruption issues in channel handling and improper validation of network data. While no major public security incidents have been widely reported, the consistent discovery of memory-related flaws underscores the importance of rigorous input validation and secure coding practices in this critical networking component.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-3856 | libssh2 输入验证错误漏洞 — libssh2CWE-190 | 8.8 | - | 2019-03-25 |
| CVE-2019-3857 | libssh2 输入验证错误漏洞 — libssh2CWE-190 | 8.8 | - | 2019-03-25 |
| CVE-2019-3860 | libssh2 缓冲区错误漏洞 — libssh2CWE-125 | 9.1 | - | 2019-03-25 |
| CVE-2019-3861 | libssh2 缓冲区错误漏洞 — libssh2CWE-125 | 9.1 | - | 2019-03-25 |
| CVE-2019-3863 | libssh2 缓冲区错误漏洞 — libssh2CWE-190 | 8.8 | - | 2019-03-25 |
| CVE-2019-3858 | libssh2 缓冲区错误漏洞 — libssh2CWE-125 | 9.1 | - | 2019-03-21 |
| CVE-2019-3855 | libssh2 输入验证错误漏洞 — libssh2CWE-190 | 8.8 | - | 2019-03-21 |
| CVE-2019-3862 | libssh2 缓冲区错误漏洞 — libssh2CWE-130 | 9.1 | - | 2019-03-20 |
| CVE-2019-3859 | libssh2 缓冲区错误漏洞 — libssh2CWE-125 | 9.1 | - | 2019-03-20 |
This page lists every published CVE security advisory associated with The libssh2 Project. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.