AI description
CVE-2026-59998 describes an undocumented security-relevant behavior within `sshd` in OpenSSH versions prior to 10.4. The vulnerability specifically concerns the `GSSAPIStrictAcceptorCheck` setting, which is rendered ineffective when the OpenSSH server is operating within a Windows Active Directory environment. This issue means that the intended security checks related to GSSAPI authentication might not be enforced as expected under these specific conditions. As of the current information, there is no known solution or vendor-supplied patch available for this vulnerability.
- Description
- sshd in OpenSSH before 10.4 has an undocumented security-relevant behavior: GSSAPIStrictAcceptorCheck has no value if the server is in Windows Active Directory.
- Source
- cve@mitre.org
- NVD status
- Analyzed
- Products
- openssh
CVSS 3.1
- Type
- Primary
- Base score
- 6.5
- Impact score
- 2.5
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
- Severity
- MEDIUM
- cve@mitre.org
- CWE-573
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
4
OpenSSHの脆弱性(Moderate: CVE-2026-59995, CVE-2026-59996, CVE-2026-59997, CVE-2026-59998, CVE-2026-59999)とOpenSSH 10.4/10.4p1リリース https://t.co/Q33JNZD6fK
@yousukezan
8 Jul 2026
1625 Impressions
3 Retweets
12 Likes
4 Bookmarks
0 Replies
0 Quotes
OpenSSHの脆弱性(Moderate: CVE-2026-59995, CVE-2026-59996, CVE-2026-59997, CVE-2026-59998, CVE-2026-59999)とOpenSSH 10.4/10.4p1リリース #sios_tech #security #vulnerability #セキュリティ #脆弱性 #linux #openssh #ssh https://t.co/iOrr2QHVsE
@omokazuki
8 Jul 2026
125 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨*CVE* CVE-2026-59998 sshd in OpenSSH before 10.4 has an undocumented security-relevant behavior: GSSAPIStrictAcceptorCheck has no value if the server is in Windows Active Directory. https://t.co/ZjKk0mGjik ----- Traducción: CVE-2026-59998 sshd en Ope… https://t.co/utmtNgl
@infoflowcloud
8 Jul 2026
39 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*",
"matchCriteriaId": "947E3B1E-F0DF-47BC-87D8-358B55B164AD",
"versionEndExcluding": "10.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]