CVE-2025-11624

Published: Oct 21, 2025

Modified: Oct 21, 2025

PUBLISHED

Description

Potential stack buffer overwrite on the SFTP server side when receiving a malicious packet that has a handle size larger than the system handle or file descriptor size, but smaller than max handle size allowed.

Vendor	Product	Versions
wolfSSH	wolfSSH	affected `1.3.0 - <= 1.4.20`

Weaknesses (CWE)

CWE-787

References

https://github.com/wolfSSL/wolfssh/pull/834

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-11624

Description

Affected Products

Weaknesses (CWE)

References