cbcvebase.
CVE-2026-39828
published 2026-05-22

CVE-2026-39828: When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially…

PriorityP337medium6.3CVSS 3.1
AVNACLPRLUINSUCLILAL
EPSS
0.22%
12.5th percentile
When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError now results in a connection error.

Affected

193 ranges· showing 25
VendorProductVersion rangeFixed in
advanced-cluster-securityrhacs-main-rhel8
advanced-cluster-securityrhacs-rhel8-operator
advanced-cluster-securityrhacs-roxctl-rhel8
advanced-cluster-securityrhacs-scanner-rhel8
advanced-cluster-securityrhacs-scanner-slim-rhel8
advanced-cluster-securityrhacs-scanner-v4-rhel8
assistedagent-preinstall-image-builder-rhel9
cert-managerjetstack-cert-manager-acmesolver-rhel9
cert-managerjetstack-cert-manager-rhel9
complianceopenshift-security-profiles-operator-bundle
complianceopenshift-security-profiles-rhel8-operator
container-native-virtualizationvirt-api-rhel9
container-native-virtualizationvirt-artifacts-server-rhel9
container-native-virtualizationvirt-controller-rhel9
container-native-virtualizationvirt-exportproxy-rhel9
container-native-virtualizationvirt-exportserver-rhel9
container-native-virtualizationvirt-handler-rhel9
container-native-virtualizationvirt-launcher-rhel9
container-native-virtualizationvirt-operator-rhel9
cryostatcryostat-storage-rhel9
devspacestraefik-rhel9
devworkspacedevworkspace-project-clone-rhel9
devworkspacedevworkspace-rhel9-operator
external-secrets-operatorexternal-secrets-rhel9
golang.orgx_crypto_golang.org_x_crypto_ssh< 0.52.00.52.0

CVSS provenance

nvdv3.16.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
vendor_redhat6.3MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.