7.2
CVE-2025-32942
- EPSS 0.02%
- Veröffentlicht 02.10.2025 00:00:00
- Zuletzt bearbeitet 15.04.2026 00:35:42
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
SSH Tectia Server before 6.6.6 sometimes allows attackers to read and alter a user's session traffic.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerSSH
≫
Produkt
Tectia Server
Default Statusunaffected
Version
0
Version <
6.4.21
Status
affected
Version
6.5.0
Version <
6.5.3
Status
affected
Version
6.6.0
Version <
6.6.6
Status
affected
Version
6.7.0
Version <
7.0.0
Status
affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.058 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| cve@mitre.org | 7.2 | 1.3 | 5.3 |
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:L
|
CWE-670 Always-Incorrect Control Flow Implementation
The code contains a control flow path that does not reflect the algorithm that the path is intended to implement, leading to incorrect behavior any time this path is navigated.