[Japanese]

JVNDB-2026-000099

Multiple vulnerabilities in TTSSH2 plugin of Tera Term

Overview

TTSSH2 plugin of Tera Term provided by TeraTerm Project contains the following vulnerabilities:
  • Unsigned to Signed Conversion Error (CWE-196) - CVE-2026-58317
  • Improper Handling of Length Parameter Inconsistency (CWE-130) - CVE-2026-60060
CVE-2026-58317
Yukihiro Nakamura reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.

CVE-2026-60060
TeraTerm Project reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.
CVSS Severity (What is CVSS?)

CVSS V3 Severity:
Base Metrics 6.3 (Medium) [IPA Score]
  • Attack Vector: Network
  • Attack Complexity: Low
  • Privileges Required: None
  • User Interaction: Required
  • Scope: Unchanged
  • Confidentiality Impact: Low
  • Integrity Impact: Low
  • Availability Impact: Low
CVSS v4 Severity
Base Metrics: 5.1 (Medium) [IPA Score]
  • Access Vector (AV): Network
  • Attack Complexity (AC): Low
  • Attack Requirements (AT): None
  • Privileges Required (PR): None
  • User Interaction (UI): Active
  • Vulnerable System Impact
  • Confidentiality Impact (VC): Low
  • Integrity Impact (VI): Low
  • Availability Impact (VA): Low
  • Subsequent System Impact
  • Confidentiality Impact (SC): None
  • Integrity Impact (SI): None
  • Availability Impact (SA): None
The above CVSS base scores have been assigned for CVE-2026-58317


CVSS v3 Severity
Base Metrics: 6.3(Medium) [IPA Score]
  • Access Vector : Network
  • Attack Complexity : Low
  • Privileges Required : None
  • User Interaction : Required
  • Scope : Unchanged
  • Confidentiality Impact : Low
  • Integrity Impact : Low
  • Availability Impact : Low
CVSS v4 Severity
Base Metrics: 5.1 (Medium) [IPA Score]
  • Access Vector (AV): Network
  • Attack Complexity (AC): Low
  • Attack Requirements (AT): None
  • Privileges Required (PR): None
  • User Interaction (UI): Active
  • Vulnerable System Impact
  • Confidentiality Impact (VC): Low
  • Integrity Impact (VI): Low
  • Availability Impact (VA): Low
  • Subsequent System Impact
  • Confidentiality Impact (SC): None
  • Integrity Impact (SI): None
  • Availability Impact (SA): None
The above CVSS base scores have been assigned for CVE-2026-60060
Affected Products


TeraTerm Project
  • TTSSH2 1.00 alpha1 to 3.6.1

For information regarding the versions of Tera Term that include the affected TTSSH2, refer to the information provided by the developer.
Impact

The following conditions may occur when Tera Term attempts to establish an SSH connection to a server set up by an attacker:
  • An out-of-bounds read may result in data from adjacent memory being treated as part of an incoming packet.
  • An out-of-bounds write may occur. The attacker cannot freely control the value written; only a temporary null-byte ('\0') write followed by restoration of the original value is possible.
As a result, the contents of adjacent memory regions may be transmitted to the server, and Tera Term may behave unexpected or terminate abnormally.
Solution

[Update the Software]
Update the software to the latest version in the Tera Term 5 series according to the information provided by the developer.
The developer has released the following version to address these vulnerabilities:
  • TTSSH2 3.6.2 (Tera Term 5.6.2)
Vendor Information

TeraTerm Project
CWE (What is CWE?)

  1. No Mapping(CWE-Other) [IPA Evaluation]
CVE (What is CVE?)

  1. CVE-2026-58317
  2. CVE-2026-60060
References

  1. JVN : JVN#65294474
Revision History

  • [2026/07/16]
      Web page was published