What is the CVSS score of CVE-2025-67305?

CVE-2025-67305 has a CVSS 3.1 base score of 9.8 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of PostgreSQL are affected by CVE-2025-67305?

RUCKUS Network Director appliances contain hardcoded SSH credentials that are identical across all deployments, allowing unauthenticated remote access to critical network infrastructure.

How to fix or mitigate CVE-2025-67305?

Within 24 hours: Identify all RND deployments and their versions; isolate affected appliances from untrusted networks if possible. Within 7 days: Contact RUCKUS for patch timeline and interim guidance; implement network segmentation to restrict SSH access to RND appliances (port 22) to trusted administrative networks only; enable SSH access logging and monitoring. Within 30 days: Apply vendor patch immediately upon availability; regenerate all SSH keys and credentials; conduct forensic review of appliance access logs for unauthorized connections.

PostgreSQL CVE-2025-67305

CRITICAL

Use of Hard-coded Cryptographic Key (CWE-321)

2026-02-19 cve@mitre.org

Privilege Escalation PostgreSQL

9.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 22:03 vuln.today

CVE Published

Feb 19, 2026 - 21:18 nvd

CRITICAL 9.8

DescriptionNVD

In RUCKUS Network Director (RND) < 4.5.0.56, the OVA appliance contains hardcoded SSH keys for the postgres user. These keys are identical across all deployments, allowing an attacker with network access to authenticate via SSH without a password. Once authenticated, the attacker can access the PostgreSQL database with superuser privileges, create administrative users for the web interface, and potentially escalate privileges further.

AnalysisAI

Hardcoded SSH keys in Ruckus Network Director OVA < 4.5.0.56 for postgres user. Same across all appliances.

Technical ContextAI

CWE-321 static SSH keys for postgres user.

RemediationAI

Update and regenerate SSH keys.

CVE-2025-67305 vulnerability details – vuln.today

Back

PostgreSQL CVE-2025-67305

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code