CVE-2026-39835 - Vulnerability Details

- Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh

Description

SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.

Published: 2026-05-22

Score: 5.3 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability arises when an SSH server uses the CertChecker callback without configuring either the IsUserAuthority or IsHostAuthority functions. Based on the description, it is inferred that a client presenting an X.509 certificate can trigger a nil‑pointer dereference, causing the Go crypto SSH server to panic, stopping the server process and resulting in a denial of service. The crash does not expose stored data but disrupts availability.

Affected Systems

The flaw affects any deployment of golang.org/x/crypto/ssh that employs CertChecker as the public key callback while leaving the authority callbacks unset. No specific version range is documented in the vulnerability record, so any version before the fix should be considered vulnerable.

Risk and Exploitability

The CVSS score of 5.3 indicates a moderate risk, while the EPSS score of < 1% suggests a low exploitation probability. The vulnerability is not listed in the CISA KEV catalog, indicating limited exploitation evidence to date. Based on the description, it is inferred that an attacker who can control the client certificate can connect to the SSH server, supply any certificate, and the server will panic, leading to a denial of service. This is a functional and impactful attack that exploits the nil‑pointer dereference weakness.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

golang.org/x/crypto

golang.org/x/crypto/ssh

unaffected

Version	Status	Constraints
`0`	affected	< 0.52.0

Configuration 1 [-]

cpe:2.3:a:golang:crypto:*:*:*:*:*:go:*:*

No data.

Vendor Product Confidence Versions

Golang

Ssh

100%

Version	Status	Scheme	Platform
`[0,0.52.0)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade to the latest golang.org/x/crypto/ssh release that incorporates the nil‑check and error return change.
Configure the SSH server to set either the IsUserAuthority or IsHostAuthority callback functions when using CertChecker, ensuring the callback is not nil and preventing the nil‑pointer dereference.
If an immediate update is impossible, avoid using CertChecker as the public key callback or temporarily disable certificate handling until the patched version is installed.

Generated by OpenCVE AI on May 28, 2026 at 20:06 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00029.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://go.dev/cl/781660
https://go.dev/issue/79563
https://groups.google.com/g/golang-announce/c/a082jnz-LvI
https://pkg.go.dev/vuln/GO-2026-5015

History

Thu, 28 May 2026 18:00:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-476

Thu, 28 May 2026 15:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Golang crypto
Weaknesses		CWE-295
CPEs		cpe:2.3:a:golang:crypto::::::go::*
Vendors & Products		Golang crypto

Fri, 22 May 2026 22:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-476

Fri, 22 May 2026 20:45:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-476

Fri, 22 May 2026 18:15:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 22 May 2026 13:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Golang Golang ssh
Vendors & Products		Golang Golang ssh

Fri, 22 May 2026 04:45:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-476

Fri, 22 May 2026 03:30:00 +0000

Type	Values Removed	Values Added
Description		SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.
Title		Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh
References		https://go.dev/cl/781660 https://go.dev/issue/79563 https://groups.google.com/g/golang-announce/c/a082jnz-LvI https://pkg.go.dev/vuln/GO-2026-5015

Subscriptions

Golang Crypto Ssh

MITRE

Status: PUBLISHED

Assigner: Go

Published: 2026-05-22T02:31:26.982Z

Updated: 2026-05-22T17:45:10.853Z

Reserved: 2026-04-07T18:13:03.529Z

Link: CVE-2026-39835

Vulnrichment

Updated: 2026-05-22T17:45:06.921Z

NVD

Status : Analyzed

Published: 2026-05-22T04:16:24.530

Modified: 2026-05-28T14:56:13.500

Link: CVE-2026-39835

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-28T20:15:16Z

Weaknesses

CWE-295
Improper Certificate Validation

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object