CVE-2025-14821 — Uncontrolled Search Path Element in Libssh

CWE-427 — Uncontrolled Search Path Element4 documents4 sources

Severity

7.8HIGHNVD

EPSS

0.0%

top 98.62%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Libssh

Timeline

PublishedApr 7

Description

A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of SSH (Secure Shell) connections, and manipulation of trusted host information, posing a significant risk to the confidentiality, integrity, and availability of SSH communications via an insecure default configuration on Windows systems where the library automatically loads configuration files from the C:\etc directory, which can be created and modified by unprivileged local users.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

▶debiandebian/libssh

🔴Vulnerability Details

GHSA

GHSA-5jf9-8f86-jhvw: A flaw was found in libssh↗2026-04-07

▶

📋Vendor Advisories

Red Hat

libssh: libssh: Insecure default configuration leads to local man-in-the-middle attacks on Windows↗2026-02-10

▶

Debian

CVE-2025-14821: libssh - A flaw was found in libssh. This vulnerability allows local man-in-the-middle at...↗2025

▶