MEDIUM🇵🇱 Wersja polska

CVE-2025-62875

CVSS 6.9v4.0pub. 2025-11-20upd. 2026-01-15

An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local users to crash OpenSMTPD. This issue affects openSUSE Tumbleweed: from ? before 7.8.0p0-1.1.

CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Opensmtpd

    APP
    Opensmtpd
    7.7.0
  • Opensuse Tumbleweed

    APP
    Opensuse
    < 7.8.0p0-1.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-28321CRITICAL9.8ten sam produkt

The Linux-PAM package before 1.5.2-6.1 for openSUSE Tumbleweed allows authentication bypass for SSH logins. Th...

CVE-2021-25315CRITICAL9.8ten sam produkt

CWE - CWE-287: Improper Authentication vulnerability in SUSE Linux Enterprise Server 15 SP 3; openSUSE Tumblew...

CVE-2020-8794CRITICAL9.8ten sam produkt

OpenSMTPD before 6.6.4 allows remote code execution because of an out-of-bounds read in mta_io in mta_session....

CVE-2023-32183HIGH7.8ten sam produkt

Incorrect Default Permissions vulnerability in the openSUSE Tumbleweed hawk2 package allows users with access ...

CVE-2023-29323HIGH7.8ten sam produkt

ascii_load_sockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portabl...