Fabian Bäumer
@skrillor.bsky.social
PhD Student @ruhr-uni-bochum.de | 🐢 Terrapin Attack | Interested in anything related to SSH and protocol security in general | Mastodon: @[email protected]
Affected versions:
<= OTP-27.3.2
<= OTP-26.2.5.10
<= OTP-25.3.2.19.
Fixed versions are OTP-27.3.3, OTP-26.2.5.11, OTP-25.3.2.20.
Link to the security advisory over on GitHub: github.com/erlang/otp/s...
<= OTP-27.3.2
<= OTP-26.2.5.10
<= OTP-25.3.2.19.
Fixed versions are OTP-27.3.3, OTP-26.2.5.11, OTP-25.3.2.20.
Link to the security advisory over on GitHub: github.com/erlang/otp/s...
Unauthenticated Remote Code Execution in Erlang/OTP SSH
### Summary
A serious vulnerability has been identified in the Erlang/OTP SSH server that may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in SS...
github.com
April 16, 2025 at 5:15 PM
Affected versions:
<= OTP-27.3.2
<= OTP-26.2.5.10
<= OTP-25.3.2.19.
Fixed versions are OTP-27.3.3, OTP-26.2.5.11, OTP-25.3.2.20.
Link to the security advisory over on GitHub: github.com/erlang/otp/s...
<= OTP-27.3.2
<= OTP-26.2.5.10
<= OTP-25.3.2.19.
Fixed versions are OTP-27.3.3, OTP-26.2.5.11, OTP-25.3.2.20.
Link to the security advisory over on GitHub: github.com/erlang/otp/s...
Mitigation:
To mitigate this issue, please update to the latest version of Erlang/OTP as soon as possible. As an immediate workaround, prevent access via appropriate firewall rules.
To mitigate this issue, please update to the latest version of Erlang/OTP as soon as possible. As an immediate workaround, prevent access via appropriate firewall rules.
April 16, 2025 at 5:15 PM
Mitigation:
To mitigate this issue, please update to the latest version of Erlang/OTP as soon as possible. As an immediate workaround, prevent access via appropriate firewall rules.
To mitigate this issue, please update to the latest version of Erlang/OTP as soon as possible. As an immediate workaround, prevent access via appropriate firewall rules.