{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-10650", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "state": "PUBLISHED", "assignerShortName": "VulDB", "dateReserved": "2026-06-02T15:19:20.070Z", "datePublished": "2026-06-02T21:15:10.566Z", "dateUpdated": "2026-06-03T14:04:31.919Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-06-02T21:15:10.566Z"}, "title": "warmcat libwebsockets SSH Protocol sshd.c lws_ssh_parse_plaintext resource consumption", "problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-400", "lang": "en", "description": "Resource Consumption"}]}, {"descriptions": [{"type": "CWE", "cweId": "CWE-404", "lang": "en", "description": "Denial of Service"}]}], "affected": [{"vendor": "warmcat", "product": "libwebsockets", "versions": [{"version": "4.5.0", "status": "affected"}, {"version": "4.5.1", "status": "affected"}, {"version": "4.5.2", "status": "affected"}, {"version": "4.5.3", "status": "affected"}, {"version": "4.5.4", "status": "affected"}, {"version": "4.5.5", "status": "affected"}, {"version": "4.5.6", "status": "affected"}, {"version": "4.5.7", "status": "affected"}, {"version": "4.5.8", "status": "affected"}], "cpes": ["cpe:2.3:a:warmcat:libwebsockets:*:*:*:*:*:*:*:*"], "modules": ["SSH Protocol Handler"]}], "descriptions": [{"lang": "en", "value": "A flaw has been found in warmcat libwebsockets up to 4.5.8. This issue affects the function lws_ssh_parse_plaintext of the file plugins/protocol_lws_ssh_base/sshd.c of the component SSH Protocol Handler. Executing a manipulation of the argument msg_len can lead to resource consumption. The attack may be launched remotely. The exploit has been published and may be used. This patch is called 3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498. A patch should be applied to remediate this issue."}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 6.9, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P", "baseSeverity": "MEDIUM"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 5.3, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "baseSeverity": "MEDIUM"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 5.3, "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "baseSeverity": "MEDIUM"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 5, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P/E:POC/RL:OF/RC:C"}}], "timeline": [{"time": "2026-06-02T00:00:00.000Z", "lang": "en", "value": "Advisory disclosed"}, {"time": "2026-06-02T02:00:00.000Z", "lang": "en", "value": "VulDB entry created"}, {"time": "2026-06-02T17:24:23.000Z", "lang": "en", "value": "VulDB entry last update"}], "credits": [{"lang": "en", "value": "biniam (VulDB User)", "type": "reporter"}], "references": [{"url": "https://vuldb.com/vuln/367955", "name": "VDB-367955 | warmcat libwebsockets SSH Protocol sshd.c lws_ssh_parse_plaintext resource consumption", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/vuln/367955/cti", "name": "VDB-367955 | CTI Indicators (IOB, IOC, TTP, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/cve/CVE-2026-10650", "name": "CVE-2026-10650 | CVE Analysis and Report", "tags": ["third-party-advisory"]}, {"url": "https://vuldb.com/submit/830261", "name": "Submit #830261 | warmcat libwebsockets 4.5.99-v4.5.0-382-g4a63b9333 Uncontrolled Memory Allocation", "tags": ["third-party-advisory"]}, {"url": "https://github.com/biniamf/pocs/tree/main/libwebsockets_sshd-parse-ic-unbounded-alloc", "tags": ["exploit"]}, {"url": "https://github.com/biniamf/pocs/blob/main/libwebsockets_sshd-parse-ic-unbounded-alloc/poc_sshd_unbounded_alloc.py", "tags": ["exploit"]}, {"url": "https://github.com/warmcat/libwebsockets/commit/3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498", "tags": ["patch"]}, {"url": "https://github.com/warmcat/libwebsockets/", "tags": ["product"]}], "tags": ["x_open-source"]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-06-03T14:04:17.007618Z", "id": "CVE-2026-10650", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-06-03T14:04:31.919Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-10650", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-06-03T14:04:17.007618Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-06-03T14:04:27.427Z"}}], "cna": {"tags": ["x_open-source"], "title": "warmcat libwebsockets SSH Protocol sshd.c lws_ssh_parse_plaintext resource consumption", "credits": [{"lang": "en", "type": "reporter", "value": "biniam (VulDB User)"}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 6.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 5, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P/E:POC/RL:OF/RC:C"}}], "affected": [{"cpes": ["cpe:2.3:a:warmcat:libwebsockets:*:*:*:*:*:*:*:*"], "vendor": "warmcat", "modules": ["SSH Protocol Handler"], "product": "libwebsockets", "versions": [{"status": "affected", "version": "4.5.0"}, {"status": "affected", "version": "4.5.1"}, {"status": "affected", "version": "4.5.2"}, {"status": "affected", "version": "4.5.3"}, {"status": "affected", "version": "4.5.4"}, {"status": "affected", "version": "4.5.5"}, {"status": "affected", "version": "4.5.6"}, {"status": "affected", "version": "4.5.7"}, {"status": "affected", "version": "4.5.8"}]}], "timeline": [{"lang": "en", "time": "2026-06-02T00:00:00.000Z", "value": "Advisory disclosed"}, {"lang": "en", "time": "2026-06-02T02:00:00.000Z", "value": "VulDB entry created"}, {"lang": "en", "time": "2026-06-02T17:24:23.000Z", "value": "VulDB entry last update"}], "references": [{"url": "https://vuldb.com/vuln/367955", "name": "VDB-367955 | warmcat libwebsockets SSH Protocol sshd.c lws_ssh_parse_plaintext resource consumption", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/vuln/367955/cti", "name": "VDB-367955 | CTI Indicators (IOB, IOC, TTP, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/cve/CVE-2026-10650", "name": "CVE-2026-10650 | CVE Analysis and Report", "tags": ["third-party-advisory"]}, {"url": "https://vuldb.com/submit/830261", "name": "Submit #830261 | warmcat libwebsockets 4.5.99-v4.5.0-382-g4a63b9333 Uncontrolled Memory Allocation", "tags": ["third-party-advisory"]}, {"url": "https://github.com/biniamf/pocs/tree/main/libwebsockets_sshd-parse-ic-unbounded-alloc", "tags": ["exploit"]}, {"url": "https://github.com/biniamf/pocs/blob/main/libwebsockets_sshd-parse-ic-unbounded-alloc/poc_sshd_unbounded_alloc.py", "tags": ["exploit"]}, {"url": "https://github.com/warmcat/libwebsockets/commit/3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498", "tags": ["patch"]}, {"url": "https://github.com/warmcat/libwebsockets/", "tags": ["product"]}], "descriptions": [{"lang": "en", "value": "A flaw has been found in warmcat libwebsockets up to 4.5.8. This issue affects the function lws_ssh_parse_plaintext of the file plugins/protocol_lws_ssh_base/sshd.c of the component SSH Protocol Handler. Executing a manipulation of the argument msg_len can lead to resource consumption. The attack may be launched remotely. The exploit has been published and may be used. This patch is called 3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498. A patch should be applied to remediate this issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-400", "description": "Resource Consumption"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-404", "description": "Denial of Service"}]}], "providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-06-02T21:15:10.566Z"}}}, "cveMetadata": {"cveId": "CVE-2026-10650", "state": "PUBLISHED", "dateUpdated": "2026-06-03T14:04:31.919Z", "dateReserved": "2026-06-02T15:19:20.070Z", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "datePublished": "2026-06-02T21:15:10.566Z", "assignerShortName": "VulDB"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A flaw has been found in warmcat libwebsockets up to 4.5.8. This issue affects the function lws_ssh_parse_plaintext of the file plugins/protocol_lws_ssh_base/sshd.c of the component SSH Protocol Handler. Executing a manipulation of the argument msg_len can lead to resource consumption. The attack may be launched remotely. The exploit has been published and may be used. This patch is called 3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498. A patch should be applied to remediate this issue."}], "id": "CVE-2026-10650", "lastModified": "2026-06-04T13:53:09.797", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "cna@vuldb.com", "type": "Secondary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "cna@vuldb.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "PROOF_OF_CONCEPT", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "cna@vuldb.com", "type": "Secondary"}]}, "published": "2026-06-02T22:16:16.293", "references": [{"source": "cna@vuldb.com", "url": "https://github.com/biniamf/pocs/blob/main/libwebsockets_sshd-parse-ic-unbounded-alloc/poc_sshd_unbounded_alloc.py"}, {"source": "cna@vuldb.com", "url": "https://github.com/biniamf/pocs/tree/main/libwebsockets_sshd-parse-ic-unbounded-alloc"}, {"source": "cna@vuldb.com", "url": "https://github.com/warmcat/libwebsockets/"}, {"source": "cna@vuldb.com", "url": "https://github.com/warmcat/libwebsockets/commit/3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/cve/CVE-2026-10650"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/submit/830261"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/vuln/367955"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/vuln/367955/cti"}], "sourceIdentifier": "cna@vuldb.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-400"}, {"lang": "en", "value": "CWE-404"}], "source": "cna@vuldb.com", "type": "Primary"}]}

{"bugzilla": {"description": "libwebsockets: libwebsockets: Denial of Service via SSH Protocol Handler resource consumption", "id": "2484180", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2484180"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.3", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "status": "draft"}, "cwe": "CWE-130", "details": ["A flaw has been found in warmcat libwebsockets up to 4.5.8. This issue affects the function lws_ssh_parse_plaintext of the file plugins/protocol_lws_ssh_base/sshd.c of the component SSH Protocol Handler. Executing a manipulation of the argument msg_len can lead to resource consumption. The attack may be launched remotely. The exploit has been published and may be used. This patch is called 3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498. A patch should be applied to remediate this issue.", "A flaw was found in libwebsockets, specifically within its SSH Protocol Handler component. A remote attacker can exploit this vulnerability by manipulating the 'msg_len' argument in the 'lws_ssh_parse_plaintext' function. This manipulation can lead to excessive resource consumption, resulting in a Denial of Service (DoS) condition for the affected system."], "mitigation": {"lang": "en:us", "value": "To mitigate this issue, restrict network access to systems running the libwebsockets SSH Protocol Handler to trusted clients only. If the SSH Protocol Handler functionality is not required, consider disabling or removing components that utilize it to reduce exposure. Consult product documentation for specific instructions on disabling or configuring the libwebsockets SSH Protocol Handler within your Red Hat product."}, "name": "CVE-2026-10650", "package_state": [{"cpe": "cpe:/a:redhat:amq_interconnect:1", "fix_state": "Fix deferred", "package_name": "libwebsockets", "product_name": "A-MQ Interconnect 1"}, {"cpe": "cpe:/a:redhat:openstack:16.2", "fix_state": "Fix deferred", "package_name": "libwebsockets", "product_name": "Red Hat OpenStack Platform 16.2"}, {"cpe": "cpe:/a:redhat:openstack:17.1", "fix_state": "Fix deferred", "package_name": "libwebsockets", "product_name": "Red Hat OpenStack Platform 17.1"}, {"cpe": "cpe:/a:redhat:service_interconnect:1", "fix_state": "Fix deferred", "package_name": "libwebsockets", "product_name": "Red Hat Service Interconnect 1"}, {"cpe": "cpe:/a:redhat:service_interconnect:2", "fix_state": "Fix deferred", "package_name": "libwebsockets", "product_name": "Red Hat Service Interconnect 2"}], "public_date": "2026-06-02T21:15:10Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-10650\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-10650\nhttps://github.com/biniamf/pocs/blob/main/libwebsockets_sshd-parse-ic-unbounded-alloc/poc_sshd_unbounded_alloc.py\nhttps://github.com/biniamf/pocs/tree/main/libwebsockets_sshd-parse-ic-unbounded-alloc\nhttps://github.com/warmcat/libwebsockets/\nhttps://github.com/warmcat/libwebsockets/commit/3f9f0c6ecaf0e6f3f219d30632c5d1f2479d7498\nhttps://vuldb.com/cve/CVE-2026-10650\nhttps://vuldb.com/submit/830261\nhttps://vuldb.com/vuln/367955\nhttps://vuldb.com/vuln/367955/cti"], "threat_severity": "Moderate"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "4.5.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "4.5.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "4.5.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "4.5.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "4.5.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "4.5.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "4.5.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "4.5.7"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "4.5.8"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "libwebsockets", "source": "cna", "vendor": "warmcat"}, "product": "libwebsockets", "vendor": "warmcat"}], "created": "2026-06-03T03:45:23.483470+00:00", "updated": "2026-06-11T02:15:27.137823+00:00", "vendors": ["warmcat", "warmcat$PRODUCT$libwebsockets"]}