VDB
AZL-60583
AZL-60583
PUBLISHED
CVSS 8.600000381469727 HIGH
CVE-2025-32433 affecting package erlang for versions less than 25.3.2.20-1
Risk Scores
CVSS 4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Azure Linux:2 | erlang | 0, 0 |
Exploit Intelligence
- This project simulates a real-world attack-and-defend scenario across two virtual machines. You will exploit a critical pre-authentication RCE vulnerability (CVE-2025-32433) in an Erlang/OTP SSH server, crack extracted password hashes, and then harden the victim machine with firewall rules and patching. (github-poc-repo)
- This project simulates a real-world attack-and-defend scenario across two virtual machines. You will exploit a critical pre-authentication RCE vulnerability (CVE-2025-32433) in an Erlang/OTP SSH server, crack extracted password hashes, and then harden the victim machine with firewall rules and patching. (github-poc)
- Based on the original version:https://github.com/vulhub/vulhub/blob/master/erlang/CVE-2025-32433/exploit.py Replace Unicode checkmark with ASCII character for Windows compatibility (github-poc-repo)
- Based on the original version:https://github.com/vulhub/vulhub/blob/master/erlang/CVE-2025-32433/exploit.py Replace Unicode checkmark with ASCII character for Windows compatibility (github-poc)
- CVE-2025-32433 Erlang/OTP SSH RCE Exploit SSH远程代码执行漏洞EXP (github-poc-repo)
- leehunkoo/hk_CVE-2025-32433 (github-poc)
- CVE-2025-32433 https://github.com/erlang/otp/security/advisories/GHSA-37cp-fgq5-7wc2 (github-poc-repo)
- ladosudeste/CVE-2025-3243 (github-poc-repo)
- AntonieSoga/Erlang-OTP-PoC_CVE-2025-32433 (github-poc-repo)
- CVE-2025-32433-available-for-windows (github-poc-repo)
…and 58 more exploits
Timeline
- Apr 16, 2025 CVE Published
- Apr 21, 2026 CVE Updated