cbcvebase.

Debian Erlang vulnerabilities

30 known vulnerabilities affecting debian/erlang.

Total CVEs
30
CISA KEV
1
actively exploited
Public exploits
4
Exploited in wild
2
Severity breakdown
CRITICAL3HIGH7MEDIUM10LOW10

Vulnerabilities

Page 1 of 2
CVE-2025-32433P1CRITICALCVSS 10.0KEVPoCRansomwarefixed in erlang 1:25.2.3+dfsg-1+deb12u1 (bookworm)2025
CVE-2025-32433 [CRITICAL] CVE-2025-32433: erlang - Erlang/OTP is a set of libraries for the Erlang programming language. Prior to v... Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in SSH protocol message handling, a malicious actor could gain unauthorized access to affected systems and execute arbi
debian
CVE-2023-48795P1MEDIUMCVSS 5.9ExploitedPoCfixed in dropbear 2022.83-1+deb12u1 (bookworm)2023
CVE-2023-48795 [MEDIUM] CVE-2023-48795: dropbear - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH bef... The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabl
debian
CVE-2014-3566P3LOWCVSS 3.4PoCfixed in erlang 1:17.3-dfsg-3 (bookworm)2014
CVE-2014-3566 [LOW] CVE-2014-3566: bouncycastle - The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses... The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved
debian
CVE-2011-3389P3MEDIUMCVSS 4.3PoCfixed in asterisk 1:13.7.2~dfsg-1 (bullseye)2011
CVE-2011-3389 [MEDIUM] CVE-2011-3389: asterisk - The SSL protocol, as used in certain configurations in Microsoft Windows and Mic... The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS s
debian
CVE-2026-28808P2HIGHCVSS 8.3fixed in erlang 1:27.3.4.10+dfsg-1 (sid)2026
CVE-2026-28808 [HIGH] CVE-2026-28808: erlang - Incorrect Authorization vulnerability in Erlang OTP (inets modules) allows unaut... Incorrect Authorization vulnerability in Erlang OTP (inets modules) allows unauthenticated access to CGI scripts protected by directory rules when served via script_alias. When script_alias maps a URL prefix to a directory outside DocumentRoot, mod_auth evaluates directory-based access controls against the DocumentRoot-relative path while mod_cgi executes the script
debian
CVE-2026-23941P2HIGHCVSS 7.0fixed in erlang 1:27.3.4.9+dfsg-1 (forky)2026
CVE-2026-23941 [HIGH] CVE-2026-23941: erlang - Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerab... Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in Erlang OTP (inets httpd module) allows HTTP Request Smuggling. This vulnerability is associated with program files lib/inets/src/http_server/httpd_request.erl and program routines httpd_request:parse_headers/7. The server does not reject or normalize duplicate Content-Length head
debian
CVE-2022-37026P3CRITICALCVSS 9.8fixed in erlang 1:24.3.4.5+dfsg-1 (bookworm)2022
CVE-2022-37026 [CRITICAL] CVE-2022-37026: erlang - In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before 25.0.2, th... In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before 25.0.2, there is a Client Authentication Bypass in certain client-certification situations for SSL, TLS, and DTLS. Scope: local bookworm: resolved (fixed in 1:24.3.4.5+dfsg-1) bullseye: resolved (fixed in 1:23.2.6+dfsg-1+deb11u1) forky: resolved (fixed in 1:24.3.4.5+dfsg-1) sid: resolved (fixed
debian
CVE-2020-25623P3HIGHCVSS 7.5fixed in erlang 1:23.1+dfsg-1 (bookworm)2020
CVE-2020-25623 [HIGH] CVE-2020-25623: erlang - Erlang/OTP 22.3.x before 22.3.4.6 and 23.x before 23.1 allows Directory Traversa... Erlang/OTP 22.3.x before 22.3.4.6 and 23.x before 23.1 allows Directory Traversal. An attacker can send a crafted HTTP request to read arbitrary files, if httpd in the inets application is used. Scope: local bookworm: resolved (fixed in 1:23.1+dfsg-1) bullseye: resolved (fixed in 1:23.1+dfsg-1) forky: resolved (fixed in 1:23.1+dfsg-1) sid: resolved (fixed in 1:23.1+d
debian
CVE-2026-32144P3LOWCVSS 7.6fixed in erlang 1:27.3.4.10+dfsg-1 (sid)2026
CVE-2026-32144 [HIGH] CVE-2026-32144: erlang - Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_o... Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP designated-responder authorization bypass via missing signature verification. The OCSP response validation in public_key:pkix_ocsp_validate/5 does not verify that a CA-designated responder certificate was cryptographically signed by the issuing CA. Instead, it only
debian
CVE-2016-10253P3CRITICALCVSS 9.8fixed in erlang 1:19.2.1+dfsg-2 (bookworm)2016
CVE-2016-10253 [CRITICAL] CVE-2016-10253: erlang - An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regu... An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regular expressions is vulnerable to a heap overflow. Regular expressions using a malformed extpattern can indirectly specify an offset that is used as an array index. This ordinal permits arbitrary regions within the erts_alloc arena to be both read and written to. Scope: local bookworm:
debian
CVE-2017-1000385P3MEDIUMCVSS 5.9fixed in erlang 1:20.1.7+dfsg-1 (bookworm)2017
CVE-2017-1000385 [MEDIUM] CVE-2017-1000385: erlang - The Erlang otp TLS server answers with different TLS alerts to different error t... The Erlang otp TLS server answers with different TLS alerts to different error types in the RSA PKCS #1 1.5 padding. This allows an attacker to decrypt content or sign messages with the server's private key (this is a variation of the Bleichenbacher attack). Scope: local bookworm: resolved (fixed in 1:20.1.7+dfsg-1) bullseye: resolved (fixed in 1:20.1.7+dfsg-1)
debian
CVE-2014-1693P3LOWCVSS 7.5fixed in erlang 1:16.b.3.1-dfsg-3 (bookworm)2014
CVE-2014-1693 [HIGH] CVE-2014-1693: erlang - Multiple CRLF injection vulnerabilities in the FTP module in Erlang/OTP R15B03 a... Multiple CRLF injection vulnerabilities in the FTP module in Erlang/OTP R15B03 allow context-dependent attackers to inject arbitrary FTP commands via CRLF sequences in the (1) user, (2) account, (3) cd, (4) ls, (5) nlist, (6) rename, (7) delete, (8) mkdir, (9) rmdir, (10) recv, (11) recv_bin, (12) recv_chunk_start, (13) send, (14) send_bin, (15) send_chunk_start, (16)
debian
CVE-2025-30211P3HIGHCVSS 7.5fixed in erlang 1:25.2.3+dfsg-1+deb12u1 (bookworm)2025
CVE-2025-30211 [HIGH] CVE-2025-30211: erlang - Erlang/OTP is a set of libraries for the Erlang programming language. Prior to v... Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.1, 26.2.5.10, and 25.3.2.19, a maliciously formed KEX init message can result with high memory usage. Implementation does not verify RFC specified limits on algorithm names (64 characters) provided in KEX init message. Big KEX init packet may lead to inefficient processin
debian
CVE-2025-48041P3HIGHCVSS 7.1fixed in erlang 1:23.2.6+dfsg-1+deb11u3 (bullseye)2025
CVE-2025-48041 [HIGH] CVE-2025-48041: erlang - Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP... Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.1
debian
CVE-2020-35733P3HIGHCVSS 7.5fixed in erlang 1:23.2.2+dfsg-1 (bookworm)2020
CVE-2020-35733 [HIGH] CVE-2020-35733: erlang - An issue was discovered in Erlang/OTP before 23.2.2. The ssl application 10.2 ac... An issue was discovered in Erlang/OTP before 23.2.2. The ssl application 10.2 accepts and trusts an invalid X.509 certificate chain to a trusted root Certification Authority. Scope: local bookworm: resolved (fixed in 1:23.2.2+dfsg-1) bullseye: resolved (fixed in 1:23.2.2+dfsg-1) forky: resolved (fixed in 1:23.2.2+dfsg-1) sid: resolved (fixed in 1:23.2.2+dfsg-1) trixi
debian
CVE-2025-48040P3MEDIUMCVSS 6.9fixed in erlang 1:27.3.4.3+dfsg-1 (forky)2025
CVE-2025-48040 [MEDIUM] CVE-2025-48040: erlang - Uncontrolled Resource Consumption vulnerability in Erlang OTP ssh (ssh_sftp modu... Uncontrolled Resource Consumption vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12. Scope: local b
debian
CVE-2025-26618P3HIGHCVSS 7.0fixed in erlang 1:25.2.3+dfsg-1+deb12u1 (bookworm)2025
CVE-2025-26618 [HIGH] CVE-2025-26618: erlang - Erlang is a programming language and runtime system for building massively scala... Erlang is a programming language and runtime system for building massively scalable soft real-time systems with requirements on high availability. OTP is a set of Erlang libraries, which consists of the Erlang runtime system, a number of ready-to-use components mainly written in Erlang. Packet size is not verified properly for SFTP packets. As a result when multiple
debian
CVE-2026-23942P3MEDIUMCVSS 5.3fixed in erlang 1:27.3.4.9+dfsg-1 (forky)2026
CVE-2026-23942 [MEDIUM] CVE-2026-23942: erlang - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') v... Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (ssh_sftpd module) allows Path Traversal. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl and program routines ssh_sftpd:is_within_root/2. The SFTP server uses string prefix matching via lists:prefix/2 rather than proper path comp
debian
CVE-2011-0766P4LOWCVSS 7.8fixed in erlang 1:14.b.3-dfsg-1 (bookworm)2011
CVE-2011-0766 [HIGH] CVE-2011-0766: erlang - The random number generator in the Crypto application before 2.0.2.2, and SSH be... The random number generator in the Crypto application before 2.0.2.2, and SSH before 2.0.5, as used in the Erlang/OTP ssh library before R14B03, uses predictable seeds based on the current time, which makes it easier for remote attackers to guess DSA host and SSH session keys. Scope: local bookworm: resolved (fixed in 1:14.b.3-dfsg-1) bullseye: resolved (fixed in 1:14.
debian
CVE-2026-23943P4MEDIUMCVSS 6.9fixed in erlang 1:27.3.4.9+dfsg-1 (forky)2026
CVE-2026-23943 [MEDIUM] CVE-2026-23943: erlang - Improper Handling of Highly Compressed Data (Compression Bomb) vulnerability in ... Improper Handling of Highly Compressed Data (Compression Bomb) vulnerability in Erlang OTP ssh (ssh_transport modules) allows Denial of Service via Resource Depletion. The SSH transport layer advertises legacy zlib compression by default and inflates attacker-controlled payloads pre-authentication without any size limit, enabling reliable memory exhaustion DoS. Two
debian
Debian Erlang vulnerabilities | cvebase