Two security weaknesses have been identified in the OpenSSH secure networking utility collection that, if effectively manipulated, may lead to an active machine-in-the-middle (MitM) and a denial-of-service (DoS) incident, respectively, under specific circumstances.
The vulnerabilities, outlined by the Qualys Threat Research Unit (TRU), are enumerated below –

CVE-2025-26465 – The OpenSSH client