CVE-2025-62875 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	UNKNOWN				---
suse	CNA	---				---
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Debian Releases

Debian Product

Codename

opensmtpd

bullseye	postponed
trixie	no-dsa
bookworm	no-dsa
forky	7.8.0p0-1 fixed
sid	7.8.0p0-1 fixed

Common Weakness Enumeration

CWE-754 - Improper Check for Unusual or Exceptional Conditions
The software does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the software.

Vulnerability Media Exposure

[GERMAN] OpenSMTP: Schwachstelle ermöglicht Denial of Service
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in OpenSMTP ausnutzen, um einen Denial of Service Angriff durchzuführen.
Published: 2025-11-02T23:00:00+00:00

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-62875

https://security.opensuse.org/2025/10/31/opensmtpd-local-DoS.html

http://www.openwall.com/lists/oss-security/2025/10/31/3

https://security.opensuse.org/2025/10/31/opensmtpd-local-DoS.html#reproducer