CVE-2025-11624
PUBLISHEDPotential stack buffer overwrite on the SFTP server side when receiving a malicious packet that has a handle size larger than the system handle or file descriptor size, but smaller than max handle size allowed.
Security Metrics
LOW
CVSS Score:1.8/ 10
Available CVSS Versions:
CVSS v4.0(Primary)
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:L/VI:L/VA:L/SC:N/SI:N/SA:L
Timeline
- Published
- October 21, 2025
- Reserved
- October 10, 2025
- Last Updated
- October 21, 2025
Assigner
- Organization
- wolfSSL
- CNA
- wolfSSL
Problem Types
CWE-787
Credits
Stanislav Fort of Aisle Research
Role: finder
Affected Products
| Vendor | Product | Version | Status |
|---|---|---|---|
| wolfSSH | wolfSSH | 1.3.0 | affected |