CVE-2025-8277

ADVISORY - nist

Summary

A flaw was found in libssh's handling of key exchange (KEX) processes when a client repeatedly sends incorrect KEX guesses. The library fails to free memory during these rekey operations, which can gradually exhaust system memory. This issue can lead to crashes on the client side, particularly when using libgcrypt, which impacts application stability and availability.

EPSS Score⁠: 0.00052 (0.160)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-401⁠

Missing Release of Memory after Effective Lifetime

ADVISORY - redhat

CWE-401⁠

Missing Release of Memory after Effective Lifetime

Impacted images

Advisories

NIST

CREATED

6 months ago

UPDATED

6 months ago

ADVISORY IDCVE-2025-8277⁠

EXPLOITABILITY SCORE

1.6

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CVSS SCORE

3.1low

Debian

CREATED

6 months ago

UPDATED

9 days ago

ADVISORY IDCVE-2025-8277⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

6 months ago

UPDATED

4 days ago

ADVISORY IDCVE-2025-8277⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Amazon

CREATED

4 months ago

UPDATED

4 months ago

ADVISORY IDALAS2023-2025-1264⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Red Hat

CREATED

6 months ago

UPDATED

2 months ago

ADVISORY IDCVE-2025-8277⁠

EXPLOITABILITY SCORE

1.6

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CVSS SCORE

3.1low