News

Critical Erlang/OTP SSH pre-auth RCE is 'Surprisingly Easy' to exploit, patch now
A critical vulnerability in the Erlang/OTP SSH, tracked as CVE-2025-32433, has been disclosed that allows for unauthenticated ...
Critical Erlang/OTP SSH RCE bug now has public exploits, patch now
Public exploits are now available for a critical Erlang/OTP SSH vulnerability tracked as CVE-2025-32433, allowing unauthenticated attackers to remotely execute code on impacted devices.
CSO Online6d
Public exploits already available for a severity 10 Erlang SSH vulnerability; patch now
Impacted devices are pervasive in IoT and telecom, and attackers exploiting the vulnerability can easily gain full access, giving them free rein on a network.
Security Boulevard10d
CVE-2025-32433: Erlang/OTP SSH Unauthenticated Remote Code Execution Vulnerability
Proof-of-concept code has been released after researchers disclosed a maximum severity remote code execution vulnerability in ...
Hackaday9mon
This Week In Security: Hide Yo SSH, Polyfill, And Packing It Up
The big news this week was that OpenSSH has an unauthorized Remote Code Execution exploit. Or more precisely, it had one that was fixed in 2006, that was unintentionally re-introduced in version 8 ...
Computing10mon
'Critical' vulnerability in OpenSSH uncovered, affects almost all Linux systems
The new vulnerability, assigned CVE-2024-6387, allows for unauthenticated remote code execution (RCE) with root privileges ... handler race condition in OpenSSH's server (sshd)", according ...
FreSSH bugs undiscovered for years threaten OpenSSH security
Researchers can disclose two brand-new vulnerabilities in OpenSSH now that patches have been released.… Qualys discovered the ...
Neowin5mon
Microsoft confirms OpenSSH issues in Windows 11 23H2 KB50443800 0
Microsoft has updated the official KB5044380 article and acknowledged that the update is breaking OpenSSH (Open Secure Shell), preventing SSH connections: Following the installation of the October ...