VDB
DEBIAN-CVE-2025-32728
DEBIAN-CVE-2025-32728
PUBLISHED
CVSS 3.799999952316284 LOW
In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.
Risk Scores
CVSS 3.1
3.799999952316284
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | openssh | 0, 0 |
| Debian:13 | openssh | 0, 0 |
| Debian:11 | openssh | 1:8.4p1-5+deb11u1, 1:8.4p1-5, 1:8.4p1-5+deb11u2 |
| Debian:12 | openssh | 1:9.2p1-2+deb12u2, 1:9.2p1-2+deb12u1, 1:9.2p1-2+deb12u4 |
Exploit Intelligence
- cve_db.json (github-poc)
- package.py (github-poc)
Timeline
- Apr 10, 2025 CVE Published
- Apr 28, 2026 CVE Updated