cbcvebase.
CVE-2026-39835
published 2026-05-22

CVE-2026-39835: SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a…

PriorityP426medium5.3CVSS 3.1
AVNACLPRNUINSUCNINAL
EPSS
0.27%
18.9th percentile
SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.

Affected

200 ranges· showing 25
VendorProductVersion rangeFixed in
advanced-cluster-securityrhacs-main-rhel8
advanced-cluster-securityrhacs-main-rhel9
advanced-cluster-securityrhacs-operator-bundle
advanced-cluster-securityrhacs-rhel8-operator
advanced-cluster-securityrhacs-rhel9-operator
advanced-cluster-securityrhacs-roxctl-rhel8
advanced-cluster-securityrhacs-roxctl-rhel9
advanced-cluster-securityrhacs-scanner-rhel8
advanced-cluster-securityrhacs-scanner-rhel9
advanced-cluster-securityrhacs-scanner-slim-rhel8
advanced-cluster-securityrhacs-scanner-slim-rhel9
advanced-cluster-securityrhacs-scanner-v4-rhel8
advanced-cluster-securityrhacs-scanner-v4-rhel9
assistedagent-preinstall-image-builder-rhel9
buildah_projectbuildah
cert-managerjetstack-cert-manager-acmesolver-rhel9
cert-managerjetstack-cert-manager-rhel9
complianceopenshift-security-profiles-operator-bundle
complianceopenshift-security-profiles-rhel8-operator
container-tools_rhel8buildah
container-tools_rhel8podman
cryostatcryostat-storage-rhel9
devspacestraefik-rhel9
devworkspacedevworkspace-project-clone-rhel9
devworkspacedevworkspace-rhel9-operator

CVSS provenance

nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
vendor_redhat5.3MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.