CVE-2026-60060 in TTSSH2información

Resumen

por MITRE • 2026-07-17

Improper Handling of Length Parameter Inconsistency (CWE-130) vulnerability exists in TTSSH2 plugin of Tera Term provided by TeraTerm Project. When Tera Term attempts to establish an SSH connection to a server set up by an attacker, out-of-bounds read/write may occur. As a result, the contents of adjacent memory regions may be transmitted to the server, and Tera Term may behave unexpected or terminate abnormally.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsable

Jpcert

Reservar

2026-07-10

Divulgación

2026-07-17

Moderación

aceptado

Artículo

VDB-379754

CPE

listo

EPSS

0.00000

KEV

no

Actividades

bajo

Fuentes

Interested in the pricing of exploits?

See the underground prices here!