Wolfssh

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-15382 HIGH This Week

A heap buffer over-read vulnerability exists in the wolfSSH_CleanPath() function in wolfSSH. An authenticated remote attacker can trigger the issue via crafted SCP path input containing '/./' sequences, resulting in a heap over read by 1 byte. [CVSS 8.1 HIGH]

Buffer Overflow Wolfssh
NVD GitHub
CVSS 3.1
8.1
EPSS
0.1%
CVE-2025-14942 CRITICAL Act Now

wolfSSH through 1.4.21 has a key exchange state machine vulnerability that can leak client passwords in cleartext, trick clients into sending bogus signatures, or skip user authentication entirely. A fundamental protocol implementation flaw.

Authentication Bypass Wolfssh
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-15382
EPSS 0% CVSS 8.1
HIGH This Week

A heap buffer over-read vulnerability exists in the wolfSSH_CleanPath() function in wolfSSH. An authenticated remote attacker can trigger the issue via crafted SCP path input containing '/./' sequences, resulting in a heap over read by 1 byte. [CVSS 8.1 HIGH]

Buffer Overflow Wolfssh
NVD GitHub
CVE-2025-14942
EPSS 0% CVSS 9.8
CRITICAL Act Now

wolfSSH through 1.4.21 has a key exchange state machine vulnerability that can leak client passwords in cleartext, trick clients into sending bogus signatures, or skip user authentication entirely. A fundamental protocol implementation flaw.

Authentication Bypass Wolfssh
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy