Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-5318

Опубликовано: 24 июн. 2025
Источник: redhat
CVSS3: 8.1
EPSS Низкий

Описание

A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in further processing. This vulnerability allows an authenticated remote attacker to potentially read unintended memory regions, exposing sensitive information or affect service behavior.

Отчет

This issue requires an attacker with valid credentials to access a server, limiting the scope to legitimate users of the SFTP service. Due to this reason, this flaw has been rated with a Moderate severity.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-125
https://bugzilla.redhat.com/show_bug.cgi?id=2369131libssh: out-of-bounds read in sftp_handle()

EPSS

Процентиль: 30%
0.00112
Низкий

8.1 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-5318

CVSS3: 8.1
ubuntu
9 месяцев назад

A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in further processing. This vulnerability allows an authenticated remote attacker to potentially read unintended memory regions, exposing sensitive information or affect service behavior.

nvd логотип

CVE-2025-5318

CVSS3: 8.1
nvd
9 месяцев назад

A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in further processing. This vulnerability allows an authenticated remote attacker to potentially read unintended memory regions, exposing sensitive information or affect service behavior.

msrc логотип

CVE-2025-5318

CVSS3: 5.4
msrc
9 месяцев назад

Libssh: out-of-bounds read in sftp_handle()

debian логотип

CVE-2025-5318

CVSS3: 8.1
debian
9 месяцев назад

A flaw was found in the libssh library in versions less than 0.11.2. A ...

rocky логотип

RLSA-2025:20943

rocky
5 месяцев назад

Moderate: libssh security update

EPSS

Процентиль: 30%
0.00112
Низкий

8.1 High

CVSS3