Critical OpenSSH Vulnerability Requires Immediate Patching to Prevent Exploitation
A critical vulnerability has been discovered in OpenSSH, a widely used tool for remote server management. This vulnerability, identified as CVE-2026-35414, affects nearly all versions of OpenSSH released over the past 15 years. It allows attackers to gain root access to affected servers, enabling them to execute commands, steal data, and disrupt operations. The vulnerability arises from the mishandling of the authorized_keys principals option in specific scenarios involving a Certificate Authority. The Centre for Cybersecurity Belgium has issued a warning, urging organizations to update to OpenSSH version 10.3 or later to mitigate the risk. 
