{"uuid": "047513cb-ca52-4ad9-8563-afa5d8b001a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55200", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mplbljwu6724", "content": "A public proof-of-concept now exists for a critical libssh2 flaw (CVE-2026-55200) that lets a malicious SSH server run code on any client that connects to it. No password, no click needed. libssh2 ships inside curl, Git, PHP and firmware updaters, and no fixed release exists yet.", "creation_timestamp": "2026-07-01T10:09:29.145436Z"}