Unrated severityCISA KEVNVD Advisory· Published Apr 16, 2025· Updated Feb 26, 2026
Erlang/OTP SSH Vulnerable to Pre-Authentication RCE
CVE-2025-32433
Description
Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in SSH protocol message handling, a malicious actor could gain unauthorized access to affected systems and execute arbitrary commands without valid credentials. This issue is patched in versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20. A temporary workaround involves disabling the SSH server or to prevent access via firewall rules.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
20- osv-coords18 versionspkg:rpm/opensuse/erlang26&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/erlang&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/erlang26&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP6pkg:rpm/suse/erlang&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP6pkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/erlang&distro=SUSE%20Manager%20Proxy%204.3pkg:rpm/suse/erlang&distro=SUSE%20Manager%20Server%204.3
< 26.2.1-150300.7.11.1+ 17 more
- (no CPE)range: < 26.2.1-150300.7.11.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 26.2.1-150300.7.11.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
- (no CPE)range: < 23.3.4.19-150300.3.20.1
Patches
Vulnerability mechanics
References
4- github.com/erlang/otp/commit/0fcd9c56524b28615e8ece65fc0c3f66ef6e4c12mitrex_refsource_MISC
- github.com/erlang/otp/commit/6eef04130afc8b0ccb63c9a0d8650209cf54892fmitrex_refsource_MISC
- github.com/erlang/otp/commit/b1924d37fd83c070055beb115d5d6a6a9490b891mitrex_refsource_MISC
- github.com/erlang/otp/security/advisories/GHSA-37cp-fgq5-7wc2mitrex_refsource_CONFIRM
News mentions
3- The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a WormThe Hacker News · Jun 11, 2026
- The Gentlemen Ransomware Group Uses Fortinet Exploits, AI, and Custom C2 FrameworksCyber Security News · Jun 3, 2026
- Thus Spoke…The GentlemenCheck Point Research · May 13, 2026