CVE-2025-32728

LOW3.8EPSS 0.23%

openssh - security update

Published: 4/10/2025Modified: 4/28/2026

Description

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.

Affected packages (3)

Alpine/opensshfrom 0, < 10.0_p1-r0
Debian/opensshfrom 0, < 1:8.4p1-5+deb11u5
Debian/opensshfrom 0, < 1:8.4p1-5+deb11u5

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	LOW3.8	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N

References (2)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2025-32728
ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2025-32728