CVE-2026-35388

CVSS v3.1

2.5

Low

Vector

AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 10.3

Description OpenSSH versions before 10.3 do not confirm connection multiplexing in proxy-mode multiplexing sessions.

Recommendations Update to version 10.3 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

ALSA-2026:13380

ALSA-2026:13381

ALSA-2026:13383

ALSA-2026:19069

ALSA-2026:19219

CVE-2026-35388

ECHO-15A9-2872-255F

JLSEC-2026-77

OESA-2026-1963

RHSA-2026:12389

RHSA-2026:13380

RHSA-2026:13381

RHSA-2026:13383

USN-8222-1

Ibm Aix

Linuxmint

Openssh

Rocky Linux

Ubuntu