> TritonInfoSec News
Home / Jun 30, 2026 / Story
0
#6 The Hacker News general June 29, 2026 at 07:06 UTC

Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw

By [email protected] (The Hacker News)

AI Summary

A public proof-of-concept has been released for CVE-2026-55200, a CVSS 4.0 score 9.2 memory corruption flaw in libssh2 affecting all versions up to and including 1.11.1. The vulnerability is client-side — a malicious or compromised SSH server can trigger arbitrary code execution on connecting clients with no credentials or user interaction required. Given libssh2's widespread use as an embedded SSH library, defenders should prioritize patching any systems or applications linking against versions ≤1.11.1.

Read full article → https://thehackernews.com/2026/06/public-poc-relea…

Relevance score: 83.0/100

# More from June 30

  1. 1
    U.S. offers $10 million for hackers targeting WhatsApp, Signal users BleepingComputer
  2. 2
    Critical SimpleHelp flaw exploited to deploy new stealer malware BleepingComputer
  3. 3
    Hackers now exploit critical Oracle E-Business flaw in attacks BleepingComputer
  4. 4
    Nissan discloses employee data breach linked to Oracle zero-day attacks BleepingComputer
  5. 5
    Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts The Hacker News
  6. 7
    Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks The Hacker News
  7. 8
    Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse The Hacker News
  8. 9
    236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet Drainers The Hacker News
  9. 10
    Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer The Hacker News