Home > Vulnerability Database > CVE-2025-14282

Mend.io Vulnerability Database

CVE-2025-14282

Good to know:

Date: February 12, 2026

A flaw was found in Dropbear. When running in multi-user mode and authenticating users, the dropbear ssh server does the socket forwardings requested by the remote client as root, only switching to the logged-in user upon spawning a shell or performing some operations like reading the user's files. With the recent ability of also using unix domain sockets as the forwarding destination any user able to log in via ssh can connect to any unix socket with the root's credentials, bypassing both file system restrictions and any SO_PEERCRED / SO_PASSCRED checks performed by the peer.

Severity Score

5.4

Related Resources (7)

Url: https://github.com/mkj/dropbear/pull/391

Url: https://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2025q4/002390.html

Url: http://www.openwall.com/lists/oss-security/2025/12/17/1

Url: http://www.openwall.com/lists/oss-security/2025/12/16/4

Url: https://seclists.org/oss-sec/2025/q4/279

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-14282

Url: https://www.mend.io/vulnerability-database/CVE-2025-14282

Severity Score

5.4

Weakness Type (CWE)

Improper Privilege Management

CWE-269

Incorrect Privilege Assignment

CWE-266

Top Fix

Upgrade Version

Upgrade to version https://github.com/mkj/dropbear.git - DROPBEAR_2025.89

Learn More

CVSS v3.1

Base Score:	5.4
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2025-14282

Good to know:

Date: February 12, 2026

Severity Score

Related Resources (7)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?