CVE-2025-5318

Libssh: out-of-bounds read in sftp_handle()

Description

A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in further processing. This vulnerability allows an authenticated remote attacker to potentially read unintended memory regions, exposing sensitive information or affect service behavior.

INFO

Published Date :

2025-06-24T14:10:07.188Z

Last Modified :

2026-03-18T20:41:54.510Z

Source :

redhat

AFFECTED PRODUCTS

The following products are affected by CVE-2025-5318 vulnerability.

Vendors	Products
Libssh	Libssh
Redhat	Ai Inference Server Enterprise Linux Openshift Openshift Container Platform Openshift Distributed Tracing Rhel Aus Rhel E4s Rhel Eus Rhel Eus Long Life Rhel Tus

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-5318.

URL	Resource
https://access.redhat.com/errata/RHSA-2025:18231
https://access.redhat.com/errata/RHSA-2025:18275
https://access.redhat.com/errata/RHSA-2025:18286
https://access.redhat.com/errata/RHSA-2025:19012
https://access.redhat.com/errata/RHSA-2025:19098
https://access.redhat.com/errata/RHSA-2025:19101
https://access.redhat.com/errata/RHSA-2025:19295
https://access.redhat.com/errata/RHSA-2025:19300
https://access.redhat.com/errata/RHSA-2025:19313
https://access.redhat.com/errata/RHSA-2025:19400
https://access.redhat.com/errata/RHSA-2025:19401
https://access.redhat.com/errata/RHSA-2025:19470
https://access.redhat.com/errata/RHSA-2025:19472
https://access.redhat.com/errata/RHSA-2025:19807
https://access.redhat.com/errata/RHSA-2025:19864
https://access.redhat.com/errata/RHSA-2025:20943
https://access.redhat.com/errata/RHSA-2025:21013
https://access.redhat.com/errata/RHSA-2025:21329
https://access.redhat.com/errata/RHSA-2025:21829
https://access.redhat.com/errata/RHSA-2025:22275
https://access.redhat.com/errata/RHSA-2025:23078
https://access.redhat.com/errata/RHSA-2025:23079
https://access.redhat.com/errata/RHSA-2025:23080
https://access.redhat.com/errata/RHSA-2026:0326
https://access.redhat.com/errata/RHSA-2026:1541
https://access.redhat.com/errata/RHSA-2026:3461
https://access.redhat.com/errata/RHSA-2026:3462
https://access.redhat.com/security/cve/CVE-2025-5318
https://bugzilla.redhat.com/show_bug.cgi?id=2369131
https://nvd.nist.gov/vuln/detail/CVE-2025-5318
https://www.cve.org/CVERecord?id=CVE-2025-5318
https://www.libssh.org/security/advisories/CVE-2025-5318.txt

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact