216.73.216.197

CVE-2025-26466

· Published 28/02/2025 22:15 · Modified 06/03/2025 16:53

Labels: CVE-2025-26466 2025-02-28CVE-2025-26466CWE-400CWE-770[email protected]

Essential information

Published
28/02/2025 22:15
Modified
06/03/2025 16:53
Author
Creator
CVSS
5.9 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS metrics

Description

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to an uncontrolled increase in memory consumption on the server side. Consequently, the server may become unavailable, resulting in a denial of service attack.

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
openbsd / openssh cpe:2.3:a:openbsd:openssh:9.5:p1:*:*:*:*:*:*
openbsd / openssh cpe:2.3:a:openbsd:openssh:9.6:-:*:*:*:*:*:*
openbsd / openssh cpe:2.3:a:openbsd:openssh:9.6:p1:*:*:*:*:*:*
openbsd / openssh cpe:2.3:a:openbsd:openssh:9.7:-:*:*:*:*:*:*
openbsd / openssh cpe:2.3:a:openbsd:openssh:9.7:p1:*:*:*:*:*:*
openbsd / openssh cpe:2.3:a:openbsd:openssh:9.8:-:*:*:*:*:*:*
openbsd / openssh cpe:2.3:a:openbsd:openssh:9.8:p1:*:*:*:*:*:*
openbsd / openssh cpe:2.3:a:openbsd:openssh:9.9:-:*:*:*:*:*:*
openbsd / openssh cpe:2.3:a:openbsd:openssh:9.9:p1:*:*:*:*:*:*
canonical / ubuntu linux cpe:2.3:o:canonical:ubuntu_linux:24.04:*:*:*:lts:*:*:*
canonical / ubuntu linux cpe:2.3:o:canonical:ubuntu_linux:24.10:*:*:*:*:*:*:*
debian / debian linux cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
debian / debian linux cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*
debian / debian linux cpe:2.3:o:debian:debian_linux:13.0:*:*:*:*:*:*:*

References