CVE-2025-32433

Warnung

Medienbericht

Exploit

EPSS 47.07%
Veröffentlicht 16.04.2025 21:34:37
Zuletzt bearbeitet 04.11.2025 14:49:05
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Erlang/OTP SSH Vulnerable to Pre-Authentication RCE

Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in SSH protocol message handling, a malicious actor could gain unauthorized access to affected systems and execute arbitrary commands without valid credentials. This issue is patched in versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20. A temporary workaround involves disabling the SSH server or to prevent access via firewall rules.

Betroffene Produkte Warnungen 1 Metriken 2 CWE 1 Referenzen 18

NVD 31 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Confd Basic Version < 7.7.19.1

Cisco ≫ Confd Basic Version >= 8.0.18 < 8.1.16.2

Cisco ≫ Confd Basic Version >= 8.2 < 8.2.11.1

Cisco ≫ Confd Basic Version >= 8.3 < 8.3.8.1

Cisco ≫ Confd Basic Version >= 8.4 < 8.4.4.1

Cisco ≫ Network Services Orchestrator Version < 5.7.19.1

Cisco ≫ Network Services Orchestrator Version >= 5.8 < 6.1.16.2

Cisco ≫ Network Services Orchestrator Version >= 6.2 < 6.2.11.1

Cisco ≫ Network Services Orchestrator Version >= 6.3 < 6.3.8.1

Cisco ≫ Network Services Orchestrator Version >= 6.4 < 6.4.1.1

Cisco ≫ Network Services Orchestrator Version >= 6.4.2 < 6.4.4.1

Cisco ≫ Cloud Native Broadband Network Gateway Version < 2025.03.1

Cisco ≫ Inode Manager Version-

Cisco ≫ Smart Phy Version < 25.2

Cisco ≫ Ultra Packet Core Version < 2025.03

Cisco ≫ Ultra Services Platform Version-

Cisco ≫ Staros Version < 2025.03

Cisco ≫ Optical Site Manager Version < 25.2.1

   Cisco ≫ Ncs 1001 Version-
   Cisco ≫ Ncs 1002 Version-
   Cisco ≫ Ncs 1004 Version-

Cisco ≫ Ncs 2000 Shelf Virtualization Orchestrator Firmware Version < 25.1.1

Cisco ≫ Ncs 2000 Shelf Virtualization Orchestrator Module Version-

Cisco ≫ Enterprise Nfv Infrastructure Software Version < 4.18

Cisco ≫ Ultra Cloud Core Version < 2025.03.1

Cisco ≫ Rv160w Firmware Version-

Cisco ≫ Rv160w Version-

Cisco ≫ Rv260 Firmware Version-

Cisco ≫ Rv260 Version-

Cisco ≫ Rv160 Firmware Version-

Cisco ≫ Rv160 Version-

Cisco ≫ Rv260p Firmware Version-

Cisco ≫ Rv260p Version-

Cisco ≫ Rv260w Firmware Version-

Cisco ≫ Rv260w Version-

Cisco ≫ Rv340 Firmware Version-

Cisco ≫ Rv340 Version-

Cisco ≫ Rv340w Firmware Version-

Cisco ≫ Rv340w Version-

Cisco ≫ Rv345 Firmware Version-

Cisco ≫ Rv345 Version-

Cisco ≫ Rv345p Firmware Version-

Cisco ≫ Rv345p Version-

Debian ≫ Debian Linux Version11.0

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

09.06.2025: CISA Known Exploited Vulnerabilities (KEV) Catalog

Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability

Schwachstelle

Erlang Erlang/OTP SSH server contains a missing authentication for critical function vulnerability. This could allow an attacker to execute arbitrary commands without valid credentials, potentially leading to unauthenticated remote code execution (RCE). By exploiting a flaw in how SSH protocol messages are handled, a malicious actor could gain unauthorized access to affected systems. This vulnerability could affect various products that implement Erlang/OTP SSH server, including—but not limited to—Cisco, NetApp, and SUSE.

Beschreibung

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	47.07%	0.977

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	10	3.9	6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

https://www.heise.de/news/Jetzt-patchen-Attacken-auf-Erlang-OTP-SSH-koennen-bevorstehen-10358958.html

Media Report

https://github.com/erlang/otp/security/advisories/GHSA-37cp-fgq5-7wc2

Vendor Advisory

https://github.com/erlang/otp/commit/0fcd9c56524b28615e8ece65fc0c3f66ef6e4c12

Patch

https://github.com/erlang/otp/commit/6eef04130afc8b0ccb63c9a0d8650209cf54892f

Patch

https://github.com/erlang/otp/commit/b1924d37fd83c070055beb115d5d6a6a9490b891

Patch

http://www.openwall.com/lists/oss-security/2025/04/16/2

Mailing List