CVE-2025-26618

CVSS v4.0

7.0

High

Vector

AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H

Name of the Vulnerable Software and Affected Versions Erlang OTP versions prior to 25.3.2.18 Erlang OTP versions prior to 26.2.5.9 Erlang OTP versions prior to 27.2.4

Description The issue arises from improper verification of packet size for SFTP packets. When multiple SSH packets are received, they might be combined into an SFTP packet that exceeds the maximum allowed packet size, potentially causing a large amount of memory to be allocated. This situation can only occur for successfully authenticated users after completing the SSH handshake.

Recommendations For Erlang OTP versions prior to 25.3.2.18, update to version 25.3.2.18 or later. For Erlang OTP versions prior to 26.2.5.9, update to version 26.2.5.9 or later. For Erlang OTP versions prior to 27.2.4, update to version 27.2.4 or later. As a temporary workaround, consider restricting access to the SFTP functionality until a patch is applied.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-789

Related Identifiers

AZL-57083

AZL-57095

BDU:2025-05988

CVE-2025-26618

DLA-4132-1

DSA-5906-1

GHSA-78CV-45VX-Q6FR

MGASA-2025-0088

OESA-2025-1220

OPENSUSE-SU-2025:14879-1

OPENSUSE-SU-2025_0901-1

OPENSUSE-SU-2025_1051-1

SUSE-SU-2025:0901-1

SUSE-SU-2025:1051-1

SUSE-SU-2025_0901-1

SUSE-SU-2025_1051-1

USN-7313-1

Affected Products

Astra Linux

Debian

Erlang/Otp

Linuxmint

Red Os

Suse

Ubuntu

CVE-2025-26618

Weakness Enumeration

Related Identifiers

Affected Products

References · 43