CVE-2025-4878 | libssh up to 0.11.1 privatekey_from_file uninitialized pointer

Inserito da Angelo Barbosa | Giu 28, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in libssh up to 0.11.1. Affected by this issue is the function privatekey_from_file. The manipulation leads to uninitialized pointer.

This vulnerability is handled as CVE-2025-4878. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-4878 | libssh up to 0.11.1 privatekey_from_file uninitialized pointer

Post correlati

CVE-2024-40119 | Nepstech NTPL-Xpon1GFEVN 2.0.1 Password Change cross-site request forgery

CVE-2023-42233 | Pat Infinite Solutions HelpdeskAdvanced up to 11.0.33 Filter/FilterEditor cross site scripting

CVE-2024-0387 | Moxa EDS-G4014 up to 3.1 Request confused deputy

CVE-2024-5336 | Ruijie RG-UAC up to 20240516 vlan_add_commit.php addVlan phyport os command injection