Search for vulnerabilities
Vulnerability details: VCID-3gze-mcs1-b7hb
Vulnerability ID VCID-3gze-mcs1-b7hb
Aliases CVE-2025-5372
Summary A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the ssh_kdf() function responsible for key derivation. Due to inconsistent interpretation of return values where OpenSSL uses 0 to indicate failure and libssh uses 0 for success—the function may mistakenly return a success status even when key derivation fails. This results in uninitialized cryptographic key buffers being used in subsequent communication, potentially compromising SSH sessions' confidentiality, integrity, and availability.
Status Published
Exploitability 0.5
Weighted Severity 4.5
Risk 2.2
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-682 Incorrect Calculation
System Score Found at
cvssv3 5.0 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5372.json
cvssv3.1 5 https://access.redhat.com/security/cve/CVE-2025-5372
ssvc Track https://access.redhat.com/security/cve/CVE-2025-5372
epss 0.00041 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00041 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00041 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00041 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00041 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00041 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00048 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00056 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00056 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00056 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00056 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00056 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00056 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00056 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00056 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
epss 0.00056 https://api.first.org/data/v1/epss?cve=CVE-2025-5372
cvssv3.1 5 https://bugzilla.redhat.com/show_bug.cgi?id=2369388
ssvc Track https://bugzilla.redhat.com/show_bug.cgi?id=2369388
cvssv3.1 7.1 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1 5.0 https://nvd.nist.gov/vuln/detail/CVE-2025-5372
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5372.json
https://api.first.org/data/v1/epss?cve=CVE-2025-5372
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5372
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1108407 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108407
cpe:/a:redhat:openshift:4 https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4
cpe:/o:redhat:enterprise_linux:10 https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10
cpe:/o:redhat:enterprise_linux:6 https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
cpe:/o:redhat:enterprise_linux:7 https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
cpe:/o:redhat:enterprise_linux:8 https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
cpe:/o:redhat:enterprise_linux:9 https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
CVE-2025-5372 https://access.redhat.com/security/cve/CVE-2025-5372
CVE-2025-5372 https://nvd.nist.gov/vuln/detail/CVE-2025-5372
show_bug.cgi?id=2369388 https://bugzilla.redhat.com/show_bug.cgi?id=2369388
USN-7619-1 https://usn.ubuntu.com/7619-1/
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5372.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L Found at https://access.redhat.com/security/cve/CVE-2025-5372
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-08T14:08:57Z/ Found at https://access.redhat.com/security/cve/CVE-2025-5372
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L Found at https://bugzilla.redhat.com/show_bug.cgi?id=2369388
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-08T14:08:57Z/ Found at https://bugzilla.redhat.com/show_bug.cgi?id=2369388
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L Found at https://nvd.nist.gov/vuln/detail/CVE-2025-5372
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.11577
EPSS Score 0.00041
Published At July 30, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:45:29.946961+00:00 Alpine Linux Importer Import https://secdb.alpinelinux.org/v3.22/community.json 37.0.0