CVE-2026-35388

ADVISORY - nist

Summary

OpenSSH before 10.3 omits connection multiplexing confirmation for proxy-mode multiplexing sessions.

EPSS Score⁠: 0.00012 (0.018)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-420⁠

Unprotected Alternate Channel

ADVISORY - redhat

CWE-306⁠

Missing Authentication for Critical Function

Impacted images

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.