Security News > 2025 > April > Critical Erlang/OTP SSH RCE bug now has public exploits, patch now

Critical Erlang/OTP SSH RCE bug now has public exploits, patch now

2025-04-19 14:05

Public exploits are now available for a critical Erlang/OTP SSH vulnerability tracked as CVE-2025-32433, allowing unauthenticated attackers to remotely execute code on impacted devices. [...]

News URL

https://www.bleepingcomputer.com/news/security/public-exploits-released-for-critical-erlang-otp-ssh-flaw-patch-now/

#critical #exploit #patch #RCE #SSH #CVE-2025-32433

Related news

Critical Erlang/OTP SSH pre-auth RCE is 'Surprisingly Easy' to exploit, patch now (source)
PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433) (source)
Fortinet Urges FortiSwitch Upgrades to Patch Critical Admin Password Change Flaw (source)
Gladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability (source)
Critical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code Execution (source)
Critical Commvault RCE vulnerability fixed, PoC available (CVE-2025-34028) (source)
Craft CMS RCE exploit chain used in zero-day attacks to steal data (source)
Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised (source)
⚡ Weekly Recap: Critical SAP Exploit, AI-Powered Phishing, Major Breaches, New CVEs & More (source)
Critical Langflow RCE flaw exploited to hack AI app servers (source)

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2025-04-16	CVE-2025-32433	Erlang/OTP is a set of libraries for the Erlang programming language.	0.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.