CVE-2025-5372HIGH 5.0EPSS p32.3%

CVE-2025-5372CVE-2025-5372

libssh / libssh

Description

A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the ssh_kdf() function responsible for key derivation. Due to inconsistent interpretation of return values where OpenSSL uses 0 to indicate failure and libssh uses 0 for success—the function may mistakenly return a success status even when key derivation fails. This results in uninitialized cryptographic key buffers being used in subsequent communication, potentially compromising SSH sessions' confidentiality, integrity, and availability.

Scoring

CVSS 3.15.0 (HIGH)
VectorCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
EPSS0.41% probability of exploitation · percentile 32.3% · 2026-06-21T12:00:28Z
Published2025-07-04
Last modified2026-06-15

Underlying weaknesses· 1

CWE-682

References

  1. https://access.redhat.com/errata/RHSA-2025:21977
  2. https://access.redhat.com/errata/RHSA-2025:23024
  3. https://access.redhat.com/errata/RHSA-2026:20610
  4. https://access.redhat.com/security/cve/CVE-2025-5372
  5. https://bugzilla.redhat.com/show_bug.cgi?id=2369388

1

TypeTargetConfidenceTier
WeaknessIncorrect Calculationcwe-6820%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-5318
CVE
CVE-2025-5987
CVE
CVE-2026-3497
CVE
CVE-2026-0966
CVE
CVE-2026-46595
CVE
CVE-2025-4658
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.