PT-2026-56291 · Openssh · Openssh
Published
2026-07-08
·
Updated
2026-07-08
·
CVE-2026-60000
CVSS v3.1
3.7
Low
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
OpenSSH versions prior to 10.4
Description
The
sshd component allows remote attackers to cause a denial of service through resource consumption. This occurs due to the mishandling of the MaxAuthTries variable during GSSAPIAuthentication, which enables an excessive number of authentication attempts.Recommendations
Update to version 10.4 or later.
Fix
DoS
Allocation of Resources Without Limits
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Openssh