CVE-2026-35388

LOW SEVERITY

CVSS Score & Metrics

Base Score

2.5 / 10

Vector String

                                        CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N                                    

OpenSSH before 10.3 omits connection multiplexing confirmation for proxy-mode multiplexing sessions.

Published Date

April 02, 2026

Last Modified

April 03, 2026

CWE ID

CWE-420

Source

NVD

Vendor

OpenBSD

Product

OpenSSH