{"vulnerability": "cve-2026-55200", "sightings": [{"uuid": "0201c055-4354-4105-8867-58fe86d0a5bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mojg22moug2f", "content": "CVE-2026-55200 - libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c\nCVE ID : CVE-2026-55200\n \n Published : June 17, 2026, 7:03 p.m. | 2\u00a0hours, 39\u00a0minutes ago\n \n Description : libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write ...", "creation_timestamp": "2026-06-17T22:58:39.269033Z"}, {"uuid": "57a57893-4188-427b-ac36-59d14d75c7c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://infosec.exchange/users/harrysintonen/statuses/116793168556043170", "content": "For example it seems Debian stable is currently affected: https://security-tracker.debian.org/tracker/CVE-2026-55200", "creation_timestamp": "2026-06-22T09:58:44.612062Z"}, {"uuid": "6f4f2f83-e63d-46df-b032-36fe82a24a97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-55200", "type": "seen", "source": "https://bsky.app/profile/thecybersecguru.com/post/3mox243ttbr2w", "content": "A critical flaw in libssh2 puts SSH clients at remote code execution\u00a0risk\n\nCVE-2026-55200 is a CVSS 9.2 heap overflow in libssh2 enabling pre-auth RCE on all versions through 1.11.1. Fix: commit 97acf3d...\n\nhttps://thecybersecguru.com/news/cve-2026-55200-libssh2-remote-code-execution/", "creation_timestamp": "2026-06-23T09:02:19.521148Z"}, {"uuid": "1101d537-92d5-4413-a475-aa6646ae0119", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mox2vyt24t24", "content": "Critical libssh2 flaw (CVE-2026-55200) enables remote code execution. Patch now. #CyberSecurity #libssh2 #Vulnerability #RemoteCodeExecution #SecurityUpdate #CVE202655200 thedailytechfeed.com/critical-lib...", "creation_timestamp": "2026-06-23T09:16:49.419782Z"}, {"uuid": "f9290249-b527-4e68-aedf-d6a2582d7c8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3moybmlrqgb2f", "content": "libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high)", "creation_timestamp": "2026-06-23T20:49:33.044935Z"}, {"uuid": "6fefd221-af8a-4ac9-861e-1cb6423f0734", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/dragostech.bsky.social/post/3moycfogekc2a", "content": "Don't see these that often, malicious server, no auth, no interaction, RCE in ssh.\n\nCVE-2026-55200 \u2014 libssh2 pre-auth heap OOB write\n\npre-auth so network attacks can deliver the packet even when client pins host keys\n\ngithub.com/bikini/explo...\n\nwww.linkedin.com/posts/dragos...", "creation_timestamp": "2026-06-23T21:03:59.602805Z"}, {"uuid": "9c2e0ada-289f-4caa-8e21-fe4af6bf1957", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-55200", "type": "seen", "source": "https://bsky.app/profile/cyberkendra.com/post/3moyn3rl4gk2m", "content": "\ud83d\udea8 libssh2 Critical RCE (CVSS 9.2)\n\nA critical vulnerability has been disclosed in libssh2, the SSH library used inside curl, backup tools, IoT firmware, and countless other software.\n\n\ud83d\udc49https://www.cyberkendra.com/2026/06/cve-2026-55200-critical-libssh2-flaw.html\n\n#libssh2 #security #vulnerability", "creation_timestamp": "2026-06-24T00:14:56.963757Z"}, {"uuid": "ad1ac9ce-8ff3-47a5-8db7-50b7369aa34d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mp2gvef3hd22", "content": "Re: libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high)", "creation_timestamp": "2026-06-24T17:29:11.111635Z"}, {"uuid": "a864b83a-a069-499e-a568-b83f3c7271cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/xeiaso.net/post/3mp2gzlpqgq23", "content": "\"No way to prevent this\" say users of only language where this regularly happens\n\nhttps://xeiaso.net/shitposts/no-way-to-prevent-this/memory-safety/CVE-2026-55200/", "creation_timestamp": "2026-06-24T17:31:33.066398Z"}, {"uuid": "bb0281d2-e04d-44ef-9369-8db75c8cc1f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/cadey.pony.social.ap.brid.gy/post/3mp2gzrwfdji2", "content": "\"No way to prevent this\" say users of only language where this regularly happens\n\nhttps://xeiaso.net/shitposts/no-way-to-prevent-this/memory-safety/CVE-2026-55200/?utm_campaign=mi_irl&utm_medium=social&utm_source=mastodon", "creation_timestamp": "2026-06-24T17:31:43.520522Z"}, {"uuid": "b1a51cb4-1e84-4c5a-a3bd-49a90a87555e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/some-rss-feeds.bsky.social/post/3mp2hlz7uk624", "content": "[some-subscribed-rss] New Post: \"No way to prevent this\" say users of only language where this regularly happens, by  https://xeiaso.net/shitposts/no-way-to-prevent-this/memory-safety/CVE-2026-55200/", "creation_timestamp": "2026-06-24T17:41:52.044577Z"}, {"uuid": "2b9645b8-a36a-4326-adfc-434790df7526", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mp2lloy6732e", "content": "Re: libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high)", "creation_timestamp": "2026-06-24T18:53:15.320703Z"}, {"uuid": "afc29ac5-c845-44ca-81be-54a144a15ebe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mp3cnjz5ho2u", "content": "Libssh2 Pre-Auth RCE PoC Dropped: CVE-2026-55200 Puts Every SSH Client at Risk \u2014 Here\u2019s How to Defend +\u00a0Video\n\nIntroduction: A public proof-of-concept (PoC) exploit has been released for CVE-2026-55200, a critical remote code execution vulnerability in the libssh2 library. This flaw resides in the\u2026", "creation_timestamp": "2026-06-25T01:45:53.702864Z"}, {"uuid": "939c91d8-bf47-4f79-b558-98091ed1e757", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mp3f5lq7nf2t", "content": "Top 3 CVE for last 7 days:\nCVE-2026-55200: 44 interactions\nCVE-2026-47729: 18 interactions\nCVE-2026-50656: 17 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-55200: 35 interactions\nCVE-2026-20230: 8 interactions\nCVE-2026-20245: 7 interactions\n", "creation_timestamp": "2026-06-25T02:30:39.335872Z"}, {"uuid": "97d1740c-8e7f-4212-9b83-fa5caf713f8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://infosec.exchange/users/Sempf/statuses/116813674482599296", "content": "Just saw there is an exploit example for that libssh2 vuln. Has anyone given it a try yet? I might be too lazy to get my laptop out.\nhttps://github.com/0xBlackash/CVE-2026-55200", "creation_timestamp": "2026-06-26T00:53:39.916967Z"}, {"uuid": "37dd1930-d6a4-49bf-bf53-e310df644379", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/Sempf.infosec.exchange.ap.brid.gy/post/3mp5q7l67nvq2", "content": "Just saw there is an exploit example for that libssh2 vuln. Has anyone given it a try yet? I might be too lazy to get my laptop out.\n\nhttps://github.com/0xBlackash/CVE-2026-55200", "creation_timestamp": "2026-06-26T00:54:45.503804Z"}, {"uuid": "a2b66eac-958b-45e4-b91a-1d9c13976cfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-55200", "type": "seen", "source": "https://infosec.exchange/users/wdormann/statuses/116813711609974893", "content": "@Sempf I didn't test this, but my eyeballs tell me that it's AI slop.\nThis one actually explains what it does and what it requires to show evidence of exploitation (of a local harness, not a real-world thing)\nhttps://github.com/bikini/exploitarium/tree/main/libssh2-cve-2026-55200-poc", "creation_timestamp": "2026-06-26T01:03:06.470747Z"}, {"uuid": "7f9ca279-782a-4977-88d0-59dc5e2b8cd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-55200", "type": "seen", "source": "https://bsky.app/profile/wdormann.infosec.exchange.ap.brid.gy/post/3mp5qq4ugjdf2", "content": "@Sempf\nI didn't test this, but my eyeballs tell me that it's AI slop.\n\nThis one actually explains what it does and what it requires to show evidence of exploitation (of a local harness, not a real-world thing)\n\nhttps://github.com/bikini/exploitarium/tree/main/libssh2-cve-2026-55200-poc", "creation_timestamp": "2026-06-26T01:03:53.586130Z"}, {"uuid": "c302c96c-37e3-4e19-a551-86da14e69ee5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mp5vmtrhn32i", "content": "Top 3 CVE for last 7 days:\nCVE-2026-55200: 44 interactions\nCVE-2026-47729: 43 interactions\nCVE-2026-8461: 34 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-8461: 26 interactions\nCVE-2026-47729: 25 interactions\nCVE-2026-20245: 6 interactions\n", "creation_timestamp": "2026-06-26T02:30:50.671120Z"}, {"uuid": "30c3dd3b-c39d-495c-8194-b04e49450c59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1936", "content": "", "creation_timestamp": "2026-06-26T09:45:02.675783Z"}]}