CVE-2025-8114

A flaw was found in libssh, a library that implements the SSH protocol. When calculating the session ID during the key exchange (KEX) process, an allocation failure in cryptographic functions may lead to a NULL pointer dereference. This issue can cause the client or server to crash.

CVSS v3 4.7 MEDIUM

4.7^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.0 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/security/cve/CVE-2025-8114	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2383220	Issue Tracking Third Party Advisory
https://git.libssh.org/projects/libssh.git/commit/?id=53ac23ded4cb2c5463f6c4cd1525331bd578812d
https://git.libssh.org/projects/libssh.git/commit/?id=65f363c9
https://www.libssh.org/security/advisories/CVE-2025-8114.txt

Configurations

Configuration 1 (hide)

cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*

History

17 Nov 2025, 21:15

Type	Values Removed	Values Added
References		() https://git.libssh.org/projects/libssh.git/commit/?id=65f363c9 -

17 Nov 2025, 20:15

Type	Values Removed	Values Added
References		() https://git.libssh.org/projects/libssh.git/commit/?id=53ac23ded4cb2c5463f6c4cd1525331bd578812d - () https://www.libssh.org/security/advisories/CVE-2025-8114.txt -

Information

Published : 2025-07-24 15:15

Updated : 2025-11-17 21:15

NVD link : CVE-2025-8114

Mitre link : CVE-2025-8114

CVE.ORG link : CVE-2025-8114

JSON object : View

Products Affected

libssh

libssh

CWE

CWE-476

NULL Pointer Dereference

{"id": "CVE-2025-8114", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.0}, {"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.0}]}, "published": "2025-07-24T15:15:27.117", "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-8114", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2383220", "tags": ["Issue Tracking", "Third Party Advisory"], "source": "[email protected]"}, {"url": "https://git.libssh.org/projects/libssh.git/commit/?id=53ac23ded4cb2c5463f6c4cd1525331bd578812d", "source": "[email protected]"}, {"url": "https://git.libssh.org/projects/libssh.git/commit/?id=65f363c9", "source": "[email protected]"}, {"url": "https://www.libssh.org/security/advisories/CVE-2025-8114.txt", "source": "[email protected]"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-476"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in libssh, a library that implements the SSH protocol. When calculating the session ID during the key exchange (KEX) process, an allocation failure in cryptographic functions may lead to a NULL pointer dereference. This issue can cause the client or server to crash."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en libssh, una librer\u00eda que implementa el protocolo SSH. Al calcular el ID de sesi\u00f3n durante el proceso de intercambio de claves (KEX), un fallo de asignaci\u00f3n en las funciones criptogr\u00e1ficas puede provocar una desreferencia de puntero nulo. Este problema puede provocar el bloqueo del cliente o del servidor."}], "lastModified": "2025-11-17T21:15:58.530", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2936209-B5E8-4C55-ABEE-2CD028C91B8F", "versionEndIncluding": "0.11.2"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}