CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2025-15661

mediumCVSS 6.5covered by 3 sourcesfirst seen 2026-06-09
Multiple security vulnerabilities were discovered in libssh2, a client-side C library implementing the SSH2 protocol which could result in memory disclosure, denial of service or potentially the execution of arbitrary code. https://security-tracker.debian.org/tracker/DSA-6365-1

CSIRTS triage

What
Multiple security vulnerabilities could result in memory disclosure, denial of service, or potentially the execution of arbitrary code.
Who is affected
Deployments of libssh2 are affected.
Urgency
Remediation is urgent due to the potential for arbitrary code execution.
Action
Update to the latest version of libssh2.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2025-15661

Get an email if CVE-2025-15661 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (3)

External references

NVD record for CVE-2025-15661

CVE.org record

Embed the live status

CVE-2025-15661 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2025-15661 status](https://www.csirts.com/badge/CVE-2025-15661)](https://www.csirts.com/cve/CVE-2025-15661)