Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-5372

A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the ssh_kdf() function responsible for key derivation. Due to inconsistent interpretation of return values where OpenSSL uses 0 to indicate failure and libssh uses 0 for success—the function may mistakenly return a success status even when key derivation fails. This results in uninitialized cryptographic key buffers being used in subsequent communication, potentially compromising SSH sessions' confidentiality, integrity, and availability.

Published

2025-07-04T06:15:24.930

Last Modified

2025-12-10T19:16:14.643

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.0 (MEDIUM)

Weaknesses

Type: Secondary
CWE-682

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	libssh	libssh	< 0.11.2	Yes
Application	redhat	openshift_container_platform	4.0	Yes
Operating System	redhat	enterprise_linux	6.0	Yes
Operating System	redhat	enterprise_linux	7.0	Yes
Operating System	redhat	enterprise_linux	8.0	Yes
Operating System	redhat	enterprise_linux	9.0	Yes
Operating System	redhat	enterprise_linux	10.0	Yes

References

https://access.redhat.com/errata/RHSA-2025:21977 ([email protected])
https://access.redhat.com/errata/RHSA-2025:23024 ([email protected])
https://access.redhat.com/security/cve/CVE-2025-5372 Third Party Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=2369388 Issue Tracking, Third Party Advisory ([email protected])