AI description
CVE-2026-59999 describes a vulnerability found in OpenSSH versions prior to 10.4. The flaw exists within the `sshd` component, where the configuration setting `DisableForwarding=yes` was intended to take precedence over `PermitTunnel=yes`, but failed to do so. This oversight means that even when `DisableForwarding` was enabled to prevent SSH tunneling, the presence of `PermitTunnel=yes` could still allow for the establishment of tunnels. This misconfiguration could lead to unauthorized use of SSH tunneling capabilities, potentially enabling an attacker to bypass network restrictions or perform actions that should have been prohibited. The vulnerability is categorized under CWE-348, which refers to the use of a less trusted source in decision-making logic.
- Description
- In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not.
- Source
- cve@mitre.org
- NVD status
- Analyzed
- Products
- openssh
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
- Severity
- HIGH
- cve@mitre.org
- CWE-348
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
4
OpenSSHの脆弱性(Moderate: CVE-2026-59995, CVE-2026-59996, CVE-2026-59997, CVE-2026-59998, CVE-2026-59999)とOpenSSH 10.4/10.4p1リリース https://t.co/Q33JNZD6fK
@yousukezan
8 Jul 2026
1625 Impressions
3 Retweets
12 Likes
4 Bookmarks
0 Replies
0 Quotes
OpenSSHの脆弱性(Moderate: CVE-2026-59995, CVE-2026-59996, CVE-2026-59997, CVE-2026-59998, CVE-2026-59999)とOpenSSH 10.4/10.4p1リリース #sios_tech #security #vulnerability #セキュリティ #脆弱性 #linux #openssh #ssh https://t.co/iOrr2QHVsE
@omokazuki
8 Jul 2026
125 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨*CVE* CVE-2026-59999 In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not. https://t.co/8IsNGxUKwy ----- Traducción: CVE-2026-59999 En sshd de OpenSSH anterior a 10.4, DisableForward… https://t.co/utmtNgl
@infoflowcloud
8 Jul 2026
36 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*",
"matchCriteriaId": "947E3B1E-F0DF-47BC-87D8-358B55B164AD",
"versionEndExcluding": "10.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]