CVE-2025-5318 — HIGH (8.1) — White Hats Nepal

Q: How severe is CVE-2025-5318?

CVE-2025-5318 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-5318?

Check the references section above for vendor advisories and patch information. Affected products include: Redhat Openshift Container Platform, Redhat Enterprise Linux, Libssh Libssh.

Vulnerability Description

A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in further processing. This vulnerability allows an authenticated remote attacker to potentially read unintended memory regions, exposing sensitive information or affect service behavior.

CVSS Score

8.1

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Redhat	Openshift Container Platform	4.0
Redhat	Enterprise Linux	8.0
Libssh	Libssh	< 0.11.2

Related Weaknesses (CWE)

CWE-125

References

https://access.redhat.com/errata/RHSA-2025:18231Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:18275Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:18286Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:19012Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:19098Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:19101Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:19295
https://access.redhat.com/errata/RHSA-2025:19300
https://access.redhat.com/errata/RHSA-2025:19313
https://access.redhat.com/errata/RHSA-2025:19400
https://access.redhat.com/errata/RHSA-2025:19401
https://access.redhat.com/errata/RHSA-2025:19470
https://access.redhat.com/errata/RHSA-2025:19472
https://access.redhat.com/errata/RHSA-2025:19807
https://access.redhat.com/errata/RHSA-2025:19864

FAQ

What is CVE-2025-5318?

CVE-2025-5318 is a vulnerability with a CVSS score of 8.1 (HIGH). A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function t...

How severe is CVE-2025-5318?

CVE-2025-5318 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-5318?

Check the references section above for vendor advisories and patch information. Affected products include: Redhat Openshift Container Platform, Redhat Enterprise Linux, Libssh Libssh.