CVE-2025-30334

High CVSS: 7.1

In OpenBSD 7.6 before errata 006 and OpenBSD 7.5 before errata 015, traffic sent over wg(4) could result in kernel crash.

Vendor

Product

CWE

Yayın Tarihi

2025-03-20 21:15:24

Güncelleme

2025-09-05 17:14:14

Source Identifier

9119a7d8-5eab-497f-8521-727c672e3725

KEV Date Added

CWE-131 Openbsd HIGH Openbsd 2025

https://ftp.openbsd.org/pub/OpenBSD/patches/7.5/common/015_wg.patch.sig https://ftp.openbsd.org/pub/OpenBSD/patches/7.6/common/006_wg.patch.sig https://github.com/openbsd/src/commit/c06199859734d958552a581d72b4c0f910e68d7c

Medium

CVE-2026-35414

OpenSSH before 10.3 mishandles the authorized_keys principals option in uncommon scenarios involving a principals list i…

Medium

CVE-2025-32728

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it dis…

Medium

CVE-2025-26466

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a m…

Medium

CVE-2025-26465

A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be…