CVE-2025-48040 | Erlang OTP up to 17.0/26.2.5.15/27.3.4.3/28.0.3 ssh_sftpd.erl resource consumption (GHSA-h7rg-6rjg-4cph)

Inserito da Angelo Barbosa | Set 11, 2025 | CVE

A vulnerability was found in Erlang OTP up to 17.0/26.2.5.15/27.3.4.3/28.0.3. It has been rated as problematic. Affected by this vulnerability is an unknown functionality in the library lib/ssh/src/ssh_sftpd.erl. Performing manipulation results in resource consumption.

This vulnerability is identified as CVE-2025-48040. The attack can be initiated remotely. There is not any exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-48040 | Erlang OTP up to 17.0/26.2.5.15/27.3.4.3/28.0.3 ssh_sftpd.erl resource consumption (GHSA-h7rg-6rjg-4cph)

Post correlati

CVE-2024-41465 | Tenda FH1201 1.2.0.14 ip/goform/setcfm funcpara1 stack-based overflow

CVE-2023-50260 | Wazuh up to 4.7.1 bin code injection (GHSA-mjq2-xf8g-68vw)

CVE-2024-41738 | IBM TXSeries for Multiplatforms 10.1 Query String get request method with sensitive query strings

CVE-2023-44250 | Fortinet FortiOS/FortiProxy up to 7.4.1 HA Request privileges management (FG-IR-23-315)