CVE-2025-62875 — Improper Check for Unusual or Exceptional Conditions in Opensuse Tumbleweed

CWE-754 — Improper Check for Unusual or Exceptional Conditions5 documents5 sources

Severity

6.9MEDIUMNVD

EPSS

0.0%

top 92.03%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Suse Opensuse Tumbleweed Opensmtpd Opensuse Tumbleweed

Timeline

PublishedNov 20

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local users to crash OpenSMTPD. This issue affects openSUSE Tumbleweed: from ? before 7.8.0p0-1.1.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages4 packages

▶NVDopensuse/tumbleweed< 7.8.0p0-1.1

▶CVEListV5suse/opensuse_tumbleweed? — 7.8.0p0-1.1

▶Debianopensmtpd/opensmtpd< 7.8.0p0-1

▶NVDopensmtpd/opensmtpd7.7.0

Patches

Patch: bugzilla.suse.com ↗

🔴Vulnerability Details

CVEList

Local DoS in OpenSMTPD via UNIX domain socket smtpd.sock↗2025-11-20

▶

GHSA

GHSA-px28-qwg7-83x2: An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local users to crash OpenSMTPD↗2025-11-20

▶

OSV

CVE-2025-62875: An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local users to crash OpenSMTPD↗2025-11-20

▶

📋Vendor Advisories

Debian

CVE-2025-62875: opensmtpd - An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMT...↗2025

▶