CVE-2026-60002

Severity CVSS v4.0:
Pending analysis
Type:
CWE-416 Use After Free
Publication date:
08/07/2026
Last modified:
08/07/2026

Description

ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchange. (This outcome occurs only on the client side.)