CVE-2025-14821

HIGH

Libssh: libssh: insecure default configuration leads to local man-in-the-middle attacks on windows

Title source: cna
STIX 2.1

Description

A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of SSH (Secure Shell) connections, and manipulation of trusted host information, posing a significant risk to the confidentiality, integrity, and availability of SSH communications via an insecure default configuration on Windows systems where the library automatically loads configuration files from the C:\etc directory, which can be created and modified by unprivileged local users.

References (4)

Scores

CVSS v3 7.8
EPSS 0.0001
EPSS Percentile 1.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-427
Status published
Products (12)
libssh/libssh
libssh/libssh < 0.12.0
Red Hat/Red Hat Enterprise Linux 10
Red Hat/Red Hat Enterprise Linux 6
Red Hat/Red Hat Enterprise Linux 7
Red Hat/Red Hat Enterprise Linux 8
Red Hat/Red Hat Enterprise Linux 9
Red Hat/Red Hat Hardened Images
Red Hat/Red Hat Hardened Images 0.12.0-1.1.hum1
Red Hat/Red Hat Hardened Images 1
... and 2 more
Published Apr 07, 2026
Tracked Since Apr 07, 2026