{"id":"BELL-CVE-2026-35387","modified":"2026-04-30T07:19:58.087836Z","published":"2026-04-04T06:09:30.658674Z","upstream":["CVE-2026-35387"],"references":[{"type":"ADVISORY","url":"https://docs.bell-sw.com/security/cves/CVE-2026-35387"}],"affected":[{"package":{"name":"openssh","ecosystem":"Alpaquita:25","purl":"pkg:apk/alpaquita/openssh?arch=source&distro=25"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"10.0_p1-r7"},{"fixed":"10.3_p1-r0"}]}],"database_specific":{"source":"https://github.com/bell-sw/osv-database/blob/master/BELL-CVE/BELL-CVE-2026-35387.json"}},{"package":{"name":"openssh","ecosystem":"Alpaquita:stream","purl":"pkg:apk/alpaquita/openssh?arch=source&distro=stream"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"9.3_p1-r7"},{"fixed":"10.3_p1-r0"}]}],"database_specific":{"source":"https://github.com/bell-sw/osv-database/blob/master/BELL-CVE/BELL-CVE-2026-35387.json"}},{"package":{"name":"openssh","ecosystem":"BellSoft Hardened Containers:25","purl":"pkg:apk/bellsoft-hardened-containers/openssh?arch=source&distro=25"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"10.0_p1-r7"},{"fixed":"10.3_p1-r0"}]}],"database_specific":{"source":"https://github.com/bell-sw/osv-database/blob/master/BELL-CVE/BELL-CVE-2026-35387.json"}},{"package":{"name":"openssh","ecosystem":"BellSoft Hardened Containers:stream","purl":"pkg:apk/bellsoft-hardened-containers/openssh?arch=source&distro=stream"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"9.3_p1-r7"},{"fixed":"10.3_p1-r0"}]}],"database_specific":{"source":"https://github.com/bell-sw/osv-database/blob/master/BELL-CVE/BELL-CVE-2026-35387.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N"}]}