Vulnerability Details CVE-2025-5372
A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the ssh_kdf() function responsible for key derivation. Due to inconsistent interpretation of return values where OpenSSL uses 0 to indicate failure and libssh uses 0 for success—the function may mistakenly return a success status even when key derivation fails. This results in uninitialized cryptographic key buffers being used in subsequent communication, potentially compromising SSH sessions' confidentiality, integrity, and availability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.5%
CVSS Severity
CVSS v3 Score 5.0
References
Products affected by CVE-2025-5372
-
cpe:2.3:a:libssh:libssh:-
-
cpe:2.3:a:libssh:libssh:0.10.0
-
cpe:2.3:a:libssh:libssh:0.10.1
-
cpe:2.3:a:libssh:libssh:0.10.2
-
cpe:2.3:a:libssh:libssh:0.10.3
-
cpe:2.3:a:libssh:libssh:0.10.4
-
cpe:2.3:a:libssh:libssh:0.10.5
-
cpe:2.3:a:libssh:libssh:0.10.6
-
cpe:2.3:a:libssh:libssh:0.11.0
-
cpe:2.3:a:libssh:libssh:0.11.1
-
cpe:2.3:a:libssh:libssh:0.4.7
-
cpe:2.3:a:libssh:libssh:0.4.8
-
cpe:2.3:a:libssh:libssh:0.5.0
-
cpe:2.3:a:libssh:libssh:0.5.1
-
cpe:2.3:a:libssh:libssh:0.5.2
-
cpe:2.3:a:libssh:libssh:0.5.3
-
cpe:2.3:a:libssh:libssh:0.5.4
-
cpe:2.3:a:libssh:libssh:0.5.5
-
cpe:2.3:a:libssh:libssh:0.6.0
-
cpe:2.3:a:libssh:libssh:0.6.1
-
cpe:2.3:a:libssh:libssh:0.6.2
-
cpe:2.3:a:libssh:libssh:0.6.3
-
cpe:2.3:a:libssh:libssh:0.6.4
-
cpe:2.3:a:libssh:libssh:0.6.5
-
cpe:2.3:a:libssh:libssh:0.7.0
-
cpe:2.3:a:libssh:libssh:0.7.1
-
cpe:2.3:a:libssh:libssh:0.7.2
-
cpe:2.3:a:libssh:libssh:0.7.3
-
cpe:2.3:a:libssh:libssh:0.7.4
-
cpe:2.3:a:libssh:libssh:0.7.5
-
cpe:2.3:a:libssh:libssh:0.7.6
-
cpe:2.3:a:libssh:libssh:0.7.7
-
cpe:2.3:a:libssh:libssh:0.8.0
-
cpe:2.3:a:libssh:libssh:0.8.1
-
cpe:2.3:a:libssh:libssh:0.8.2
-
cpe:2.3:a:libssh:libssh:0.8.3
-
cpe:2.3:a:libssh:libssh:0.8.4
-
cpe:2.3:a:libssh:libssh:0.8.5
-
cpe:2.3:a:libssh:libssh:0.8.6
-
cpe:2.3:a:libssh:libssh:0.8.7
-
cpe:2.3:a:libssh:libssh:0.8.8
-
cpe:2.3:a:libssh:libssh:0.8.9
-
cpe:2.3:a:libssh:libssh:0.9.0
-
cpe:2.3:a:libssh:libssh:0.9.1
-
cpe:2.3:a:libssh:libssh:0.9.2
-
cpe:2.3:a:libssh:libssh:0.9.3
-
cpe:2.3:a:libssh:libssh:0.9.4
-
cpe:2.3:a:libssh:libssh:0.9.5
-
cpe:2.3:a:libssh:libssh:0.9.6
-
cpe:2.3:a:libssh:libssh:0.9.7
-
cpe:2.3:a:libssh:libssh:0.9.8
-
cpe:2.3:a:redhat:openshift_container_platform:4.0
-
cpe:2.3:o:redhat:enterprise_linux:10.0
-
cpe:2.3:o:redhat:enterprise_linux:6.0
-
cpe:2.3:o:redhat:enterprise_linux:7.0
-
cpe:2.3:o:redhat:enterprise_linux:8.0
-
cpe:2.3:o:redhat:enterprise_linux:9.0