A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauth_password of the file src/userauth.c. Such manipulation of the argument username_len/password_len leads to integer overflow. The attack may be launched remotely. The name of the patch is 256d04b60d80bf1190e96b0ad1e91b2174d744b1. A patch should be applied to remediate this issue.

An update of the libssh2 package has been released.

The version of libssh2 installed on the remote host is prior to 1.4.3-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3329 advisory.

    A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function     userauth_password of the file src/userauth.c. Such manipulation of the argument username_len/password_len     leads to integer overflow. The attack may be launched remotely. The name of the patch is     256d04b60d80bf1190e96b0ad1e91b2174d744b1. A patch should be applied to remediate this issue.
    (CVE-2026-7598)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1779 advisory.

    A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function     userauth_password of the file src/userauth.c. Such manipulation of the argument username_len/password_len     leads to integer overflow. The attack may be launched remotely. The name of the patch is     256d04b60d80bf1190e96b0ad1e91b2174d744b1. A patch should be applied to remediate this issue.
    (CVE-2026-7598)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-1b9134cdc9 advisory.

    This update addresses CVE-2026-7598, a potential heap buffer overflow, which could be triggered remotely     by supplying very long username and/or password strings.

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-f87ac8187c advisory.

    This update addresses CVE-2026-7598, a potential heap buffer overflow, which could be triggered remotely     by supplying very long username and/or password strings.

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8309-1 advisory.

    It was discovered that libssh2 incorrectly handled username and password length values during SSH password     authentication. A remote attacker could possibly use this issue to cause a denial of service.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-7598 advisory.

  - A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function     userauth_password of the file src/userauth.c. Such manipulation of the argument username_len/password_len     leads to integer overflow. The attack May be launched remotely. The name of the patch is     256d04b60d80bf1190e96b0ad1e91b2174d744b1. A patch should be applied to remediate this issue.
    (CVE-2026-7598)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function     userauth_password of the file src/userauth.c. Such manipulation of the argument username_len/password_len     leads to integer overflow. The attack may be launched remotely. The name of the patch is     256d04b60d80bf1190e96b0ad1e91b2174d744b1. A patch should be applied to remediate this issue.
    (CVE-2026-7598)

Note that Nessus relies on the presence of the package as reported by the vendor.

ID	Name	Product	Family	Severity
321399	Photon OS 5.0: Libssh2 PHSA-2026-5.0-0857	Nessus	PhotonOS Local Security Checks	medium
319781	Amazon Linux 2 : libssh2, --advisory ALAS2-2026-3329 (ALAS-2026-3329)	Nessus	Amazon Linux Local Security Checks	medium
319779	Amazon Linux 2023 : libssh2, libssh2-devel (ALAS2023-2026-1779)	Nessus	Amazon Linux Local Security Checks	medium
319615	Fedora 43 : libssh2 (2026-1b9134cdc9)	Nessus	Fedora Local Security Checks	medium
317985	Fedora 44 : libssh2 (2026-f87ac8187c)	Nessus	Fedora Local Security Checks	medium
317098	Ubuntu 24.04 LTS / 25.10 / 26.04 LTS : libssh2 vulnerability (USN-8309-1)	Nessus	Ubuntu Local Security Checks	medium
312357	Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-7598)	Nessus	Azure Linux Local Security Checks	medium
311788	Linux Distros Unpatched Vulnerability : CVE-2026-7598	Nessus	Misc.	medium

Detections

Analytics

CVE-2026-7598

medium

Tenable Plugins

medium

medium

medium

medium

medium

medium

medium

medium