CVE-2025-14942 | THREATINT

Description

wolfSSH’s key exchange state machine can be manipulated to leak the client’s password in the clear, trick the client to send a bogus signature, or trick the client into skipping user authentication. This affects client applications with wolfSSH version 1.4.21 and earlier. Users of wolfSSH must update or apply the fix patch and it’s recommended to update credentials used. This fix is also recommended for wolfSSH server applications. While there aren’t any specific attacks on server applications, the same defect is present. Thanks to Aina Toky Rasoamanana of Valeo and Olivier Levillain of Telecom SudParis for the report.

PUBLISHED Reserved 2025-12-18 | Published 2026-01-06 | Updated 2026-01-06 | Assigner wolfSSL

CRITICAL: 9.4CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/U:Red

Problem types

CWE-287 Improper Authentication

Product status

Default status

unaffected

Any version before 1.4.22

affected

Credits

Aina Toky Rasoamanana finder

Olivier Levillain finder

References

github.com/wolfSSL/wolfssh/pull/855

cve.org (CVE-2025-14942)

nvd.nist.gov (CVE-2025-14942)

Download JSON