Security News > 2025 > April > Critical Erlang/OTP SSH RCE bug now has public exploits, patch now

Critical Erlang/OTP SSH RCE bug now has public exploits, patch now

2025-04-19 14:05

Public exploits are now available for a critical Erlang/OTP SSH vulnerability tracked as CVE-2025-32433, allowing unauthenticated attackers to remotely execute code on impacted devices. [...]

News URL

https://www.bleepingcomputer.com/news/security/public-exploits-released-for-critical-erlang-otp-ssh-flaw-patch-now/

#critical #exploit #patch #RCE #SSH #CVE-2025-32433

Related news

Critical Erlang/OTP SSH pre-auth RCE is 'Surprisingly Easy' to exploit, patch now (source)
Critical Veeam Backup & Replication RCE vulnerability fixed, patch ASAP! (CVE-2025-23120) (source)
PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433) (source)
Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)
Stealthy Apache Tomcat Critical Exploit Bypasses Security Filters: Are You at Risk? (source)
Infoseccers criticize Veeam over critical RCE vulnerability and a failing blacklist (source)
Veeam RCE bug lets domain users hack backup servers, patch now (source)
Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication (source)
Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks (source)

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2025-04-16	CVE-2025-32433	Erlang/OTP is a set of libraries for the Erlang programming language.	0.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.