Sign In

CVE-2025-61985

ADVISORY - nist

Summary

ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used.

EPSS Score: 0.00013 (0.014)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-158

Improper Neutralization of Null Byte or NUL Character

Impacted images

Advisories
Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.

Sign in