CVE-2025-32433

CRITICAL CISA KEV EPSS 99.9%
Published Apr 16, 20251y ago · Modified Jun 17, 20261w ago
10.0 CVSS 3.1
Critical
Find Similar
Published Apr 16, 2025 1y ago
Last Modified Jun 17, 2026 1w ago
KEV Listed Jun 9, 2025 1y ago
KEV Due Jun 30, 2025 364d overdue

Description

Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in SSH protocol message handling, a malicious actor could gain unauthorized access to affected systems and execute arbitrary commands without valid credentials. This issue is patched in versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20. A temporary workaround involves disabling the SSH server or to prevent access via firewall rules.

CVSS Details

Base Score
10.0
Exploitability
3.9
Impact
6.0
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Changed
Confidentiality High
Integrity High
Availability High

Threat Intelligence

CISA Known Exploited Overdue 364d
Added
Jun 9, 2025
Due
Jun 30, 2025

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

EPSS Exploit Probability
99.9% percentile
Exploit & Patch Status
Actively Exploited (KEV)
Patch Available

Weaknesses 1

CWE-306 Missing Authentication for Critical Function Authentication

Affected Products 47

VendorProductVersionRange
erlangerlang\/otp* <25.3.2.20
erlangerlang\/otp*≥26.0  –  <26.2.5.11
erlangerlang\/otp*≥27.0  –  <27.3.3
ciscoconfd_basic* <7.7.19.1
ciscoconfd_basic*≥8.0.18  –  <8.1.16.2
ciscoconfd_basic*≥8.2  –  <8.2.11.1
ciscoconfd_basic*≥8.3  –  <8.3.8.1
ciscoconfd_basic*≥8.4  –  <8.4.4.1
cisconetwork_services_orchestrator* <5.7.19.1
cisconetwork_services_orchestrator*≥5.8  –  <6.1.16.2
cisconetwork_services_orchestrator*≥6.2  –  <6.2.11.1
cisconetwork_services_orchestrator*≥6.3  –  <6.3.8.1
cisconetwork_services_orchestrator*≥6.4  –  <6.4.1.1
cisconetwork_services_orchestrator*≥6.4.2  –  <6.4.4.1
ciscocloud_native_broadband_network_gateway* <2025.03.1
ciscoinode_manager*any
ciscosmart_phy* <25.2
ciscoultra_packet_core* <2025.03
ciscoultra_services_platform*any
ciscostaros* <2025.03
ciscooptical_site_manager* <25.2.1
cisconcs_1001*any
cisconcs_1002*any
cisconcs_1004*any
cisconcs_2000_shelf_virtualization_orchestrator_firmware* <25.1.1
cisconcs_2000_shelf_virtualization_orchestrator_module*any
ciscoenterprise_nfv_infrastructure_software* <4.18
ciscoultra_cloud_core* <2025.03.1
ciscorv160w_firmware*any
ciscorv160w*any
ciscorv260_firmware*any
ciscorv260*any
ciscorv160_firmware*any
ciscorv160*any
ciscorv260p_firmware*any
ciscorv260p*any
ciscorv260w_firmware*any
ciscorv260w*any
ciscorv340_firmware*any
ciscorv340*any
ciscorv340w_firmware*any
ciscorv340w*any
ciscorv345_firmware*any
ciscorv345*any
ciscorv345p_firmware*any
ciscorv345p*any
debiandebian_linux11.0any

References 14

  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/16/2
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/18/1
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/18/2
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/18/6
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/19/1
    Mailing List
  • github.com https://github.com/ProDefense/CVE-2025-32433/blob/main/CVE-2025-32433.py
    Exploit
  • github.com https://github.com/erlang/otp/commit/0fcd9c56524b28615e8ece65fc0c3f66ef6e4c12
    Patch
  • github.com https://github.com/erlang/otp/commit/6eef04130afc8b0ccb63c9a0d8650209cf54892f
    Patch
  • github.com https://github.com/erlang/otp/commit/b1924d37fd83c070055beb115d5d6a6a9490b891
    Patch
  • github.com https://github.com/erlang/otp/security/advisories/GHSA-37cp-fgq5-7wc2
    Vendor Advisory
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html
    Third Party Advisory
  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-erlang-otp-ssh-xyZZy
    Third Party Advisory
  • security.netapp.com https://security.netapp.com/advisory/ntap-20250425-0001/
    Third Party Advisory
  • cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-32433
    US Government Resource

Remediation

  • github.com https://github.com/erlang/otp/commit/0fcd9c56524b28615e8ece65fc0c3f66ef6e4c12
    Patch
  • github.com https://github.com/erlang/otp/commit/6eef04130afc8b0ccb63c9a0d8650209cf54892f
    Patch
  • github.com https://github.com/erlang/otp/commit/b1924d37fd83c070055beb115d5d6a6a9490b891
    Patch