CVE-2026-60002
Severity CVSS v4.0:
Pending analysis
Type:
CWE-416
Use After Free
Publication date:
08/07/2026
Last modified:
08/07/2026
Description
ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchange. (This outcome occurs only on the client side.)
Impact
Base Score 3.x
7.70
Severity 3.x
HIGH



