CVE-2026-7598

Daily digests

An integer overflow in libssh2's password authentication code could let an attacker corrupt memory during SSH authentication. Exploitation isn't trivial, but a successful attack could lead to code execution or a crash in any application that uses libssh2 for SSH connections. This affects libssh2 packages on Azure Linux 3.0 and CBL Mariner 2.0, including nmap builds that bundle it.

• Daily Digest · May 6, 2026

  Eclipse BaSyx CVSS 10 RCE + 4 critical bugs