## CVE-2026-60000 - Low Severity Vulnerability Vulnerable Library - src4.0.4 Library home page: https://github.com/MidnightBSD/src.git Found in HEAD commit: 816463d989cc5839c1cca2efb5bf2503408507fb Found in base branch: stable/4.0 Vulnerable Source Files (1) /crypto/openssh/auth2-gss.c Vulnerability Details sshd in OpenSSH before 10.4 allows remote attackers to cause a denial of service (resource consumption from excessive authentication attempts) because MaxAuthTries was mishandled for GSSAPIAuthentication. Publish Date: 2026-07-08 URL: CVE-2026-60000 CVSS 3 Score Details (3.7) Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: High - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: Low For more information on CVSS3 Scores, click here. Suggested Fix Type: Upgrade version Release Date: 2026-07-08 Fix Resolution: https://github.com/openssh/openssh-portable.git - V_10_4_P1 *** Step up your Open Source Security Game with Mend [here](https://www.whitesourcesoftware.com/full_solution_bolt_github)