CVE-2026-40194: phpseclib has a variable-time HMAC comparison in SSH2::get_binary_packet() using != instead of hash_equals()

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-40194

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

phpseclib has a variable-time HMAC comparison in SSH2::get_binary_packet() using != instead of hash_equals()

Source: NVD (National Vulnerability Database)

Vulnerability Description

phpseclib is a PHP secure communications library. Prior to 3.0.51, 2.0.53, and 1.0.28, phpseclib\Net\SSH2::get_binary_packet() uses PHP's != operator to compare a received SSH packet HMAC against the locally computed HMAC. != on equal-length binary strings in PHP uses memcmp(), which short-circuits on the first differing byte. This is a real variable-time comparison (CWE-208), proven by scaling benchmarks. This vulnerability is fixed in 3.0.51, 2.0.53, and 1.0.28.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

通过时间差异性导致的信息暴露

Source: NVD (National Vulnerability Database)

Vulnerability Title

phpseclib 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

phpseclib是phpseclib开源的一个 PHP 安全通信库。 phpseclib 3.0.51之前版本、2.0.53之前版本和1.0.28之前版本存在安全漏洞，该漏洞源于phpseclibNetSSH2::get_binary_packet()使用PHP的!=运算符比较接收到的SSH数据包HMAC与本地计算的HMAC，存在可变时间比较问题。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
phpseclib	phpseclib	< 1.0.28	-

II. Public POCs for CVE-2026-40194

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-40194

Please Login to view more intelligence information

https://github.com/phpseclib/phpseclib/releases/tag/3.0.51x_refsource_MISC
https://github.com/phpseclib/phpseclib/releases/tag/2.0.53x_refsource_MISC
https://github.com/phpseclib/phpseclib/releases/tag/1.0.28x_refsource_MISC
https://github.com/phpseclib/phpseclib/security/advisories/GHSA-r854-jrxh-36qxx_refsource_CONFIRM
https://github.com/phpseclib/phpseclib/commit/ffe48b6b1b1af6963327f0a5330e3aa004a194acx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2026-40194

IV. Related Vulnerabilities

Same product: phpseclib

CVE-2026-32935
phpseclib's AES-CBC unpadding susceptible to padding oracle

Same vendor: phpseclib

CVE-2026-32935
phpseclib's AES-CBC unpadding susceptible to padding oracle

Same weakness: CWE-208

V. Comments for CVE-2026-40194

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2026-40194

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-40194

III. Intelligence Information for CVE-2026-40194

IV. Related Vulnerabilities

V. Comments for CVE-2026-40194

Leave a comment