CVE-2025-8114

A flaw was found in libssh, a library that implements the SSH protocol. When calculating the session ID during the key exchange (KEX) process, an allocation failure in cryptographic functions may lead to a NULL pointer dereference. This issue can cause the client or server to crash.

CVSS v3 4.7 MEDIUM

4.7^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.0 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/security/cve/CVE-2025-8114	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2383220	Issue Tracking Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*

History

14 Aug 2025, 00:45

Type	Values Removed	Values Added
CPE		cpe:2.3:a:libssh:libssh::::::::
First Time		Libssh Libssh libssh
Summary		(es) Se encontró una falla en libssh, una librería que implementa el protocolo SSH. Al calcular el ID de sesión durante el proceso de intercambio de claves (KEX), un fallo de asignación en las funciones criptográficas puede provocar una desreferencia de puntero nulo. Este problema puede provocar el bloqueo del cliente o del servidor.
References	~~() https://access.redhat.com/security/cve/CVE-2025-8114 -~~	() https://access.redhat.com/security/cve/CVE-2025-8114 - Third Party Advisory
References	~~() https://bugzilla.redhat.com/show_bug.cgi?id=2383220 -~~	() https://bugzilla.redhat.com/show_bug.cgi?id=2383220 - Issue Tracking, Third Party Advisory

24 Jul 2025, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-24 15:15

Updated : 2025-08-14 00:45

NVD link : CVE-2025-8114

Mitre link : CVE-2025-8114

CVE.ORG link : CVE-2025-8114

JSON object : View

Products Affected

libssh

libssh

CWE

CWE-476

NULL Pointer Dereference

{"id": "CVE-2025-8114", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.0}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.0}]}, "published": "2025-07-24T15:15:27.117", "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-8114", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2383220", "tags": ["Issue Tracking", "Third Party Advisory"], "source": "secalert@redhat.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-476"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in libssh, a library that implements the SSH protocol. When calculating the session ID during the key exchange (KEX) process, an allocation failure in cryptographic functions may lead to a NULL pointer dereference. This issue can cause the client or server to crash."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en libssh, una librer\u00eda que implementa el protocolo SSH. Al calcular el ID de sesi\u00f3n durante el proceso de intercambio de claves (KEX), un fallo de asignaci\u00f3n en las funciones criptogr\u00e1ficas puede provocar una desreferencia de puntero nulo. Este problema puede provocar el bloqueo del cliente o del servidor."}], "lastModified": "2025-08-14T00:45:36.510", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2936209-B5E8-4C55-ABEE-2CD028C91B8F", "versionEndIncluding": "0.11.2"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}