VDB
WID-SEC-W-2025-2034
WID-SEC-W-2025-2034
PUBLISHED
CVSS 8.699999809265137 HIGH
Erlang/OTP (Open Telecom Platform) ist eine Sammlung von Bibliotheken und Tools, die auf der Programmiersprache Erlang basieren und für den Aufbau skalierbarer, fehlertoleranter und verteilter Systeme entwickelt wurden.
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE openSUSE | ||
| Open Source Erlang/OTP <28.0.3 | ||
| Open Source Erlang/OTP <5.1.4.12 | ||
| SUSE Linux | ||
| Open Source Erlang/OTP <5.3.3 | ||
| Debian Linux | ||
| Open Source Erlang/OTP <5.2.11.3 | ||
| Open Source Erlang/OTP <26.2.5.15 | ||
| Open Source Erlang/OTP 26.2.5.15 | ||
| Open Source Erlang/OTP 27.3.4.3 | ||
| Open Source Erlang/OTP 5.3.3 | ||
| Open Source Erlang/OTP 28.0.3 | ||
| Open Source Erlang/OTP 5.2.11.3 | ||
| Open Source Erlang/OTP 5.1.4.12 | ||
| Ubuntu Linux | ||
| Open Source Erlang/OTP <27.3.4.3 | ||
| Open Source Erlang/OTP <16.0.3 | ||
| Open Source Erlang/OTP 16.0.3 | ||
| Fedora Linux |
Exploit Intelligence
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2034.json (circl)
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2034 (circl)
- https://erlangforums.com/t/patch-package-otp-28-0-3-released (circl)
- https://github.com/erlang/otp/security/advisories/GHSA-pvj7-9652-7h9r (circl)
- https://ubuntu.com/security/notices/USN-7777-1 (circl)
- https://ubuntu.com/security/notices/USN-7831-1 (circl)
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-5905c468d2 (circl)
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/V5QYQCCTUV25RUNMQQOBIC7TJ273LISJ/ (circl)
- https://lists.suse.com/pipermail/sle-security-updates/2025-October/023037.html (circl)
- https://lists.suse.com/pipermail/sle-security-updates/2025-November/023197.html (circl)
…and 5 more exploits
Timeline
- Sep 10, 2025 CVE Published
- Jan 5, 2026 CVE Updated
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2034.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2034 advisory
- https://erlangforums.com/t/patch-package-otp-28-0-3-released url
- https://github.com/erlang/otp/security/advisories/GHSA-pvj7-9652-7h9r url
- https://ubuntu.com/security/notices/USN-7777-1 url
- https://ubuntu.com/security/notices/USN-7831-1 url
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-5905c468d2 url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/V5QYQCCTUV25RUNMQQOBIC7TJ273LISJ/ url
- https://lists.suse.com/pipermail/sle-security-updates/2025-October/023037.html url
- https://lists.suse.com/pipermail/sle-security-updates/2025-November/023197.html url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EOMCTYWFTYTVAWWSTPGYIZMBUTU37XCN/ url
- https://lists.debian.org/debian-lts-announce/2025/11/msg00019.html url
- https://lists.suse.com/pipermail/sle-security-updates/2026-January/023684.html url