CVE-2025-32433

Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in SSH protocol message handling, a malicious actor could gain unauthorized access to affected systems and execute arbitrary commands without valid credentials. This issue is patched in versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20. A temporary workaround involves disabling the SSH server or to prevent access via firewall rules.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
GitHub_MCNA
10 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
erlangerlang\/otp
𝑥
< 25.3.2.20
erlangerlang\/otp
26.0 ≤
𝑥
< 26.2.5.11
erlangerlang\/otp
27.0 ≤
𝑥
< 27.3.3
ciscoconfd_basic
𝑥
< 7.7.19.1
ciscoconfd_basic
8.0.18 ≤
𝑥
< 8.1.16.2
ciscoconfd_basic
8.2 ≤
𝑥
< 8.2.11.1
ciscoconfd_basic
8.3 ≤
𝑥
< 8.3.8.1
ciscoconfd_basic
8.4 ≤
𝑥
< 8.4.4.1
cisconetwork_services_orchestrator
𝑥
< 5.7.19.1
cisconetwork_services_orchestrator
5.8 ≤
𝑥
< 6.1.16.2
cisconetwork_services_orchestrator
6.2 ≤
𝑥
< 6.2.11.1
cisconetwork_services_orchestrator
6.3 ≤
𝑥
< 6.3.8.1
cisconetwork_services_orchestrator
6.4 ≤
𝑥
< 6.4.1.1
cisconetwork_services_orchestrator
6.4.2 ≤
𝑥
< 6.4.4.1
ciscocloud_native_broadband_network_gateway
𝑥
< 2025.03.1
ciscoinode_manager
-
ciscosmart_phy
𝑥
< 25.2
ciscoultra_packet_core
-
ciscoultra_services_platform
-
ciscostaros
*
ciscooptical_site_manager
𝑥
< 25.2.1
cisconcs_2000_shelf_virtualization_orchestrator_firmware
𝑥
< 25.1.1
ciscoenterprise_nfv_infrastructure_software
𝑥
< 4.18
ciscoultra_cloud_core
𝑥
< 2025.03.1
ciscorv160w_firmware
-
ciscorv260_firmware
-
ciscorv160_firmware
-
ciscorv260p_firmware
-
ciscorv260w_firmware
-
ciscorv340_firmware
-
ciscorv340w_firmware
-
ciscorv345_firmware
-
ciscorv345p_firmware
-
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
erlang
bullseye
vulnerable
bullseye (security)
1:23.2.6+dfsg-1+deb11u2
fixed
bookworm
1:25.2.3+dfsg-1+deb12u1
fixed
bookworm (security)
1:25.2.3+dfsg-1+deb12u1
fixed
trixie
1:27.3.4.1+dfsg-1
fixed
sid
1:27.3.4.1+dfsg-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
erlang
plucky
Fixed 1:27.3+dfsg-1ubuntu1.1
released
oracular
Fixed 1:25.3.2.12+dfsg-1ubuntu2.3
released
noble
Fixed 1:25.3.2.8+dfsg-1ubuntu4.3
released
jammy
Fixed 1:24.2.1+dfsg-1ubuntu0.4
released
focal
Fixed 1:22.2.7+dfsg-1ubuntu0.5
released
bionic
Fixed 1:20.2.2+dfsg-1ubuntu2+esm1
released
xenial
Fixed 1:18.3-dfsg-1ubuntu3.1+esm1
released
trusty
not-affected
Common Weakness Enumeration
References
https://github.com/erlang/otp/commit/0fcd9c56524b28615e8ece65fc0c3f66ef6e4c12
https://github.com/erlang/otp/commit/6eef04130afc8b0ccb63c9a0d8650209cf54892f
https://github.com/erlang/otp/commit/b1924d37fd83c070055beb115d5d6a6a9490b891
https://github.com/erlang/otp/security/advisories/GHSA-37cp-fgq5-7wc2
http://www.openwall.com/lists/oss-security/2025/04/16/2
http://www.openwall.com/lists/oss-security/2025/04/18/1
http://www.openwall.com/lists/oss-security/2025/04/18/2
http://www.openwall.com/lists/oss-security/2025/04/18/6
http://www.openwall.com/lists/oss-security/2025/04/19/1
https://security.netapp.com/advisory/ntap-20250425-0001/
https://github.com/ProDefense/CVE-2025-32433/blob/main/CVE-2025-32433.py