Package impact
crates.io / russh
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-48795 | medium | 5.9 | 5.9 | 3y ago | The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from… | |||
| CVE-2026-46705 | unknown | — | — | 5d ago | russh server userauth state is not reset when authentication principal changes | |||
| CVE-2026-46702 | unknown | — | — | 5d ago | russh: Post-decompression SSH packet size was not bounded, allowing remote oversized compressed packets |