Potential stack buffer overwrite on the SFTP server side when receiving a malicious packet that has a handle size larger than the system handle or file descriptor size, but smaller than max handle size allowed.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://github.com/wolfSSL/wolfssh/pull/834 |
Configurations
No configuration.
History
21 Oct 2025, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-10-21 14:15
Updated : 2025-10-21 19:31
NVD link : CVE-2025-11624
Mitre link : CVE-2025-11624
CVE.ORG link : CVE-2025-11624
JSON object : View
Products Affected
No product.
CWE
CWE-787
Out-of-bounds Write