Remote Code Execution Vulnerability in Erlang/OTP SSH Server
CVE-2025-32433
Key Information:
- Vendor
- Erlang
- Status
- Otp
- Vendor
- CVE Published:
- 16 April 2025
Badges
What is CVE-2025-32433?
CVE-2025-32433 is a remote code execution vulnerability found in the SSH server component of Erlang/OTP, a set of libraries used for the Erlang programming language. This vulnerability poses a threat by allowing attackers to exploit flaws in the handling of SSH protocol messages, enabling them to execute arbitrary commands on affected systems without needing valid authentication credentials. If left unaddressed, this issue could result in unauthorized access and significant operational disruption for organizations leveraging Erlang/OTP for critical applications.
Technical Details
The vulnerability is tied to specific versions of Erlang/OTP prior to OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20. It stems from improper handling of SSH protocol messages, which could allow unauthorized remote code execution (RCE). This flaw potentially exposes systems to unauthorized access by malicious actors. Organizations are advised to implement the patched versions to mitigate the risk or temporarily disable the SSH server or restrict access via firewall rules as a workaround.
Potential impact of CVE-2025-32433
-
Unauthorized System Access: Successful exploitation of the vulnerability allows attackers to execute arbitrary commands, which could lead to full system compromise and manipulation of sensitive data.
-
Operational Disruption: Gaining unauthorized control over systems can disrupt business operations, leading to potential downtime, loss of productivity, and financial impact.
-
Data Breaches: The potential for sensitive information exposure increases, risking data integrity and confidentiality, which could have legal and reputational repercussions for affected organizations.
Affected Version(s)
otp >= OTP-27.0-rc1, < OTP-27.3.3 < OTP-27.0-rc1, OTP-27.3.3
otp >= OTP-26.0-rc1, < OTP-26.2.5.11 < OTP-26.0-rc1, OTP-26.2.5.11
otp < OTP-25.3.2.20 < OTP-25.3.2.20
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
Get notified when SecurityVulnerability.io launches alerting π
Well keep you posted π§
News Articles
Help Net SecurityCVE-2025-32433PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433) - Help Net Security
There are now public proof-of-concept (PoC) exploits for a maximum-severity vulnerability in the Erlang/OTP SSH server (CVE-2025-32433).
3 days ago
GBHackers NewsCVE-2025-32433PoC Released for Critical Unauthenticated Erlang/OTP RCE Vulnerability
A critical remote code execution (RCE) vulnerability in Erlang/OTPβs SSH implementation (CVE-2025-32433) has now entered active exploit risk.
3 days ago
The RegisterCVE-2025-32433AI models can generate exploit code at lightning speed
The time from vulnerability disclosure to proof-of-concept (PoC) exploit code can now be as short as a few hours, thanks to generative AI models. Matthew Keely, of Platform Security and penetration testing...
3 days ago
References
CVSS V3.1
Timeline
- π₯
Vulnerability reached the number 1 worldwide trending spot
- π‘
Public PoC available
- π°
Used in Ransomware
- π
Vulnerability started trending
- πΎ
Exploit known to exist
- π°
First article discovered by The Hacker News
Vulnerability published