CVE-2025-11625

Source
https://cve.org/CVERecord?id=CVE-2025-11625
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-11625.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-11625
Published
2025-10-21T13:25:18.120Z
Modified
2026-07-08T07:12:23.223588091Z
Severity
  • 9.4 (Critical) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/AU:Y/U:Red CVSS Calculator
Summary
Host verification bypass and credential leak
Details

Improper host authentication vulnerability in wolfSSH version 1.4.20 and earlier clients that allows authentication bypass and leaking of clients credentials.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/11xxx/CVE-2025-11625.json",
    "cna_assigner": "wolfSSL",
    "cwe_ids": [
        "CWE-287"
    ],
    "unresolved_ranges": [
        {
            "extracted_events": [
                {
                    "introduced": "1.4.20;0"
                },
                {
                    "last_affected": "1.4.20;0"
                }
            ],
            "source": "AFFECTED_FIELD"
        }
    ]
}
References

Affected packages

Git / github.com/wolfssl/wolfssh

Affected ranges

Type
GIT
Repo
https://github.com/wolfssl/wolfssh
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Database specific
{
    "cpe": "cpe:2.3:a:wolfssh:wolfssh:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.4.20"
        }
    ],
    "source": "CPE_RANGE"
}

Affected versions

v0.*
v0.1
v0.2.0
v1.*
v1.0.0-RC1
v1.0.0-RC2
v1.1.0-stable
v1.2.0-stable
v1.2.2
v1.3.0-stable
v1.4.0-stable
v1.4.10-stable
v1.4.11-stable
v1.4.12-stable
v1.4.13-stable
v1.4.14-stable
v1.4.15-stable
v1.4.16
v1.4.17-stable
v1.4.18-stable
v1.4.19-stable
v1.4.2-stable
v1.4.20-stable
v1.4.3-stable
v1.4.4-stable
v1.4.5-stable
v1.4.6-stable
v1.4.7-stable
v1.4.8-stable
v1.4.9

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-11625.json"