Home > Vulnerability Database > CVE-2025-4877

Mend.io Vulnerability Database

CVE-2025-4877

Good to know:

Date: August 20, 2025

In libssh before 0.11.2 bin_to_base64() (src/base64.c) can experience an integer overflow and subsequent under allocation, leading to a write beyond bounds. The bug can occur only in 32-bit builds. The only problematic use case is ssh_get_fingerprint_hash() in case the API is (mis)used and a libssh consumer passes in an unexpectedly large input buffer. As a mitigation, the function bin_to_base64() is adjusted to not allow inputs larger than 256MB, which is aligned with other functions that process user input

Severity Score

4.5

Related Resources (7)

Url: https://access.redhat.com/security/cve/CVE-2025-4877

Url: https://www.libssh.org/security/advisories/CVE-2025-4877.txt

Url: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=6fd9cc8ce3958092a1aae11f1f2e911b2747732d

Url: https://bugzilla.redhat.com/show_bug.cgi?id=2376193

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-4877

Url: https://seclists.org/oss-sec/2025/q2/284

Url: https://www.mend.io/vulnerability-database/CVE-2025-4877

Severity Score

4.5

Weakness Type (CWE)

Integer Overflow or Wraparound

CWE-190

Out-of-bounds Write

CWE-787

Top Fix

Upgrade Version

Upgrade to version https://git.libssh.org/projects/libssh.git - libssh-0.11.2

Learn More

CVSS v3.1

Base Score:	4.5
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

CVE-2025-4877

Good to know:

Date: August 20, 2025

Severity Score

Related Resources (7)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?