wolfSSH Improper Host Authentication Vulnerability Allowing Authentication Bypass and Credential Leakage

Vulnerability

A vulnerability exists in wolfSSH clients in versions through 1.4.20, allowing for improper host authentication. This flaw can lead to authentication bypass and the unintentional disclosure of client credentials.

Impact

Exploitation of this vulnerability can result in unauthorized authentication and leakage of sensitive client credentials.

Added: Oct 21, 2025, 2:18 PM

Updated: Oct 21, 2025, 8:04 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

6.4

remediation

0.0

relevance

0.8

threat

0.0

urgency

10.0

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

6.4

remediation

0.0

relevance

0.8

threat

0.0

urgency

10.0

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

wolfSSH Improper Host Authentication Vulnerability Allowing Authentication Bypass and Credential Leakage

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating