Low severity3.4NVD Advisory· Published May 6, 2026· Updated May 7, 2026
CVE-2026-44405
CVE-2026-44405
Description
In Paramiko through 4.0.0 before a448945, rsakey.py allows the SHA-1 algorithm.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
paramikoPyPI | <= 4.0.0 | — |
Affected products
32- osv-coords31 versionspkg:apk/chainguard/airflow-3pkg:apk/chainguard/datadog-agent-7.71-core-integrationspkg:apk/chainguard/datadog-agent-7.72-core-integrationspkg:apk/chainguard/datadog-agent-7.74-core-integrationspkg:apk/chainguard/datadog-agent-7.77-core-integrationspkg:apk/chainguard/datadog-agent-7.79-core-integrationspkg:apk/chainguard/datadog-agent-fips-7.75-core-integrationspkg:apk/chainguard/datadog-agent-fips-7.79-core-integrationspkg:apk/chainguard/duplicitypkg:apk/chainguard/keep-apipkg:apk/chainguard/keep-api-fipspkg:apk/chainguard/nemopkg:apk/chainguard/openstack-nova-2026.1pkg:apk/chainguard/pgadmin4pkg:apk/chainguard/py3.11-paramikopkg:apk/chainguard/py3.12-paramikopkg:apk/chainguard/py3.13-paramikopkg:apk/chainguard/superset-6.0pkg:apk/wolfi/airflow-3pkg:apk/wolfi/datadog-agent-7.72-core-integrationspkg:apk/wolfi/datadog-agent-7.74-core-integrationspkg:apk/wolfi/datadog-agent-7.77-core-integrationspkg:apk/wolfi/datadog-agent-7.79-core-integrationspkg:apk/wolfi/py3.11-paramikopkg:apk/wolfi/py3.12-paramikopkg:apk/wolfi/py3.13-paramikopkg:apk/wolfi/superset-6.0pkg:pypi/paramikopkg:rpm/opensuse/python-paramiko&distro=openSUSE%20Tumbleweedpkg:rpm/suse/python-paramiko&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/python-paramiko&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
< 3.2.1-r2+ 30 more
- (no CPE)range: < 3.2.1-r2
- (no CPE)range: < 7.71.2-r21
- (no CPE)range: < 7.72.4-r21
- (no CPE)range: < 7.74.1-r15
- (no CPE)range: < 7.77.3-r7
- (no CPE)range: < 7.79.2-r3
- (no CPE)range: < 7.75.4-r5
- (no CPE)range: < 7.79.2-r2
- (no CPE)range: < 3.0.7-r4
- (no CPE)range: < 0.51.0-r6
- (no CPE)range: < 0.51.0-r6
- (no CPE)range: < 2.7.3-r2
- (no CPE)range: < 33.0.1_git20260616-r0
- (no CPE)range: < 9.14-r2
- (no CPE)range: < 5.0.0-r0
- (no CPE)range: < 5.0.0-r0
- (no CPE)range: < 5.0.0-r0
- (no CPE)range: < 6.0.0-r11
- (no CPE)range: < 3.2.1-r2
- (no CPE)range: < 7.72.4-r21
- (no CPE)range: < 7.74.1-r15
- (no CPE)range: < 7.77.3-r7
- (no CPE)range: < 7.79.2-r3
- (no CPE)range: < 5.0.0-r0
- (no CPE)range: < 5.0.0-r0
- (no CPE)range: < 5.0.0-r0
- (no CPE)range: < 6.0.0-r11
- (no CPE)range: <= 4.0.0
- (no CPE)range: < 5.0.0-1.1
- (no CPE)range: < 3.5.1-160000.3.1
- (no CPE)range: < 3.5.1-160000.3.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.