CVE-2025-4658

Published May 13, 2025

Last updated a month ago

CVSS critical 9.3

Overview

Description: Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification. As OPKSSH depends on the OpenPubkey library for authentication, this vulnerability in OpenPubkey also applies to OPKSSH versions prior to 0.5.0 and would allow an attacker to bypass OPKSSH authentication.
Source: cna@cloudflare.com
NVD status: Analyzed

Risk scores

CVSS 4.0

Type: Secondary
Base score: 9.3
Impact score: -
Exploitability score: -
Vector string: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity: CRITICAL

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

Weaknesses

cna@cloudflare.com: CWE-305
nvd@nist.gov: CWE-347

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:openpubkey:openpubkey:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F8A66F3-AD00-4F3F-8C2C-3779A0E06CBF",
            "versionEndExcluding": "0.10.0"
          },
          {
            "criteria": "cpe:2.3:a:openpubkey:opkssh:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "840F0B17-67D8-4B7C-91CA-AA907D27B5F3",
            "versionEndExcluding": "0.5.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 4.0

CVSS 3.1

Weaknesses

Social media

Configurations

References