{"id":"CVE-2026-10650","summary":"warmcat libwebsockets SSH Protocol sshd.c lws_ssh_parse_plaintext resource consumption","details":"A flaw has been found in warmcat libwebsockets up to 4.5.8. This issue affects the function lws_ssh_parse_plaintext of the file plugins/protocol_lws_ssh_base/sshd.c of the component SSH Protocol Handler. Executing a manipulation of the argument msg_len can lead to resource consumption. The attack may be launched remotely. The exploit has been published and may be used. This patch is called 3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498. A patch should be applied to remediate this issue.","modified":"2026-06-18T03:57:13.538420967Z","published":"2026-06-02T21:15:10.566Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/10xxx/CVE-2026-10650.json","cwe_ids":["CWE-400","CWE-404"],"cna_assigner":"VulDB"},"references":[{"type":"WEB","url":"https://github.com/warmcat/libwebsockets/"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/10xxx/CVE-2026-10650.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-10650"},{"type":"ADVISORY","url":"https://vuldb.com/cve/CVE-2026-10650"},{"type":"ADVISORY","url":"https://vuldb.com/submit/830261"},{"type":"ADVISORY","url":"https://vuldb.com/vuln/367955"},{"type":"REPORT","url":"https://vuldb.com/vuln/367955/cti"},{"type":"FIX","url":"https://github.com/warmcat/libwebsockets/commit/3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498"},{"type":"EVIDENCE","url":"https://github.com/biniamf/pocs/blob/main/libwebsockets_sshd-parse-ic-unbounded-alloc/poc_sshd_unbounded_alloc.py"},{"type":"EVIDENCE","url":"https://github.com/biniamf/pocs/tree/main/libwebsockets_sshd-parse-ic-unbounded-alloc"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/warmcat/libwebsockets","events":[{"introduced":"0"},{"fixed":"3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"last_affected":"4.5.0"},{"last_affected":"4.5.1"},{"last_affected":"4.5.2"},{"last_affected":"4.5.3"},{"last_affected":"4.5.4"},{"last_affected":"4.5.5"},{"last_affected":"4.5.6"},{"last_affected":"4.5.7"},{"last_affected":"4.5.8"}],"source":["AFFECTED_FIELD","REFERENCES"]}}],"versions":["v4.5.0","v4.4.0","v4.3.0","v4.2.0","v4.2-rc1","v4.1.0","v4.0.0","v3.1.0","v3.0.0","v2.4.0","v2.3.0","v2.2.0","v2.1.0","v2.1-pre3","v2.0.0","v1.7.0","v1.6.0-chrome48-firefox42","v1.5-chrome47-firefox41","master-test-2015-11-19-1","master-test-2015-11-06-1","v1.4-chrome43-firefox-36","v1.3-chrome37-firefox30","v1.23-chrome32-firefox24","v1.22-chrome26-firefox18","v1.21-chrome26-firefox18","v1.2-chrome26-firefox18","valgrind-clean","v1.1-chrome26-firefox18","v1.0-chrome25-firefox17","release-0.6","support-chrome-20-firefox-12","support-protocol-v8-chrome-15-firefox-6","support-protocol-v7","deflate-stream-support","release-0.5","release-0.4","release-0.3","release-0.2","release-0.1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-10650.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P"}]}