CVE-2026-48852 | THREATINT

Description

PuTTY 0.71 before 0.84 has an assertion failure in ECDSA signature verification.

PUBLISHED Reserved 2026-05-25 | Published 2026-05-25 | Updated 2026-05-26 | Assigner mitre

LOW: 3.7CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Problem types

CWE-617 Reachable Assertion

Product status

Default status

unaffected

0.71 (custom) before 0.84

affected

References

lists.tartarus.org/pipermail/putty-announce/2026/000042.html

www.chiark.greenend.org.uk/...ely-triggerable-assertion.html

cve.org (CVE-2026-48852)

nvd.nist.gov (CVE-2026-48852)

Download JSON

help @ threatint.eu