Severity by source
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
7DescriptionCVE.org
A flaw has been found in janmojzis tinyssh up to 20250501. Impacted is an unknown function of the file tinyssh/crypto_sign_ed25519_tinyssh.c of the component Ed25519 Signature Handler. This manipulation causes improper verification of cryptographic signature. The attack is restricted to local execution. The attack's complexity is rated as high. The exploitability is considered difficult. The exploit has been published and may be used. Upgrading to version 20260301 is recommended to address this issue. Patch name: 9c87269607e0d7d20174df742accc49c042cff17. Upgrading the affected component is recommended. If you want to get best quality of vulnerability data, you may have to visit VulDB.
AnalysisAI
A cryptographic signature verification flaw exists in tinyssh's Ed25519 signature handler (crypto_sign_ed25519_tinyssh.c) that allows improper validation of signatures, potentially enabling an attacker to forge or bypass signature checks. Affected versions of janmojzis tinyssh up to 20250501 are impacted, with the vulnerability requiring local execution and high attack complexity. A public exploit has been disclosed, and vendor patches are available in version 20260301.
Technical ContextAI
The vulnerability resides in the Ed25519 signature verification implementation within tinyssh, a lightweight SSH server implementation. According to CWE-347 (Improper Verification of Cryptographic Signature), the flaw involves inadequate validation logic in the crypto_sign_ed25519_tinyssh.c component that handles EdDSA (Edwards-curve Digital Signature Algorithm) signature verification. TinySSH uses Ed25519 as a core cryptographic primitive for SSH host key authentication and message authentication. The CPE (cpe:2.3:a:janmojzis:tinyssh:*:*:*:*:*:*:*:*) indicates all versions of the tinyssh product line are in scope until patching. The root cause appears to be improper cryptographic signature validation logic that could allow an attacker with local access to bypass signature verification checks intended to authenticate SSH operations.
RemediationAI
Upgrade tinyssh to version 20260301 or later from the official repository (https://github.com/janmojzis/tinyssh/releases/tag/20260301). The patch commit 9c87269607e0d7d20174df742accc49c042cff17 addresses the signature verification flaw in crypto_sign_ed25519_tinyssh.c. For systems unable to patch immediately, restrict SSH access to tinyssh-based servers to trusted local networks and implement additional SSH access controls via iptables or equivalent firewall rules to limit local authentication attack surface. Monitor systems for suspicious signature validation errors in SSH logs and consider running tinyssh in sandboxed or containerized environments with restrictive Linux capabilities to limit the impact of local privilege exploitation.
More in Jwt Attack
View allWhy is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update
Authentication bypass in SimpleHelp 5.5.15 and prior (plus 6.0 pre-release builds) allows remote unauthenticated attacke
Authentication bypass in Fortinet FortiOS, FortiProxy, and FortiSwitchManager allows unauthenticated remote attackers to
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. Rated critical severity (CVS
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. Rated critical severity (CVS
The package jsrsasign before 10.5.25 are vulnerable to Improper Verification of Cryptographic Signature when JWS or JWT
A library injection vulnerability exists in Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. Rated criti
A library injection vulnerability exists in the WebView.app helper app of Microsoft Teams (work or school) 24046.2813.27
A library injection vulnerability exists in the com.microsoft.teams2.modulehost.app helper app of Microsoft Teams (work
The Ruby SAML library is for implementing the client side of a SAML authorization. Rated critical severity (CVSS 9.8), t
cosign is a container signing and verification utility. Rated critical severity (CVSS 9.8), this vulnerability is remote
Biscuit is an authentication and authorization token for microservices architectures. Rated critical severity (CVSS 9.8)
Same technique Information Disclosure
View allVendor StatusVendor
Debian
| Release | Status | Fixed Version | Urgency |
|---|---|---|---|
| bullseye | not-affected | - | - |
| bookworm | not-affected | - | - |
| trixie | vulnerable | 20250501-1 | - |
| forky, sid | fixed | 20260301-1 | - |
| (unstable) | fixed | 20260301-1 | unimportant |
Share
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-14291