CVE-2025-15224

CWE-287 — Improper Authentication CWE-30512 documents10 sources

Severity

3.1LOW

EPSS

0.1%

top 75.55%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Haxx Curl Curl Curl

Timeline

PublishedJan 8

Latest updateMar 3

Description

When doing SSH-based transfers using either SCP or SFTP, and asked to do public key authentication, curl would wrongly still ask and authenticate using a locally running SSH agent.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:NExploitability: 1.6 | Impact: 1.4

Affected Packages4 packages

▶NVDhaxx/curl7.58.0 — 8.18.0

▶Debiancurl< 8.18.0-1

▶Ubuntucurl< 7.35.0-1ubuntu2.20+esm19+3

▶CVEListV5curl/curl8.17.0 — 8.17.0+69

Patches

Patch: curl.se ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

OSV

curl vulnerabilities↗2026-03-03

▶

OSV

CVE-2025-15224: When doing SSH-based transfers using either SCP or SFTP, and asked to do public key authentication, curl would wrongly still ask and authenticate usin↗2026-01-08

▶

GHSA

GHSA-hccr-q52r-4w88: When doing SSH-based transfers using either SCP or SFTP, and asked to do public key authentication, curl would wrongly still ask and authenticate usin↗2026-01-08

▶

CVEList

libssh key passphrase bypass without agent set↗2026-01-08

▶

📋Vendor Advisories

Ubuntu

curl vulnerabilities↗2026-03-03

▶

Ubuntu

curl vulnerabilities↗2026-02-25

▶

Red Hat

curl: libssh key passphrase bypass without agent set↗2026-01-07

▶

Debian

CVE-2025-15224: curl - When doing SSH-based transfers using either SCP or SFTP, and asked to do public ...↗2025

▶

🕵️Threat Intelligence

Wiz

CVE-2025-15224 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶

💬Community

HackerOne

CVE-2025-15224: libssh key passphrase bypass without agent set↗2026-01-07

▶

Bugzilla

CVE-2025-15224 curl: libssh key passphrase bypass without agent set↗2025-12-31

▶