CVE-2026-35387

ADVISORY - nist

Summary

OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA algorithm in PubkeyAcceptedAlgorithms or HostbasedAcceptedAlgorithms is misinterpreted to mean all ECDSA algorithms.

EPSS Score⁠: 0.00032 (0.093)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-670⁠

Always-Incorrect Control Flow Implementation

ADVISORY - redhat

CWE-115⁠

Misinterpretation of Input

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.