vulnerability
Amazon Linux 2023: CVE-2025-32728: Medium priority package update for openssh
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:N/I:P/A:N) | Apr 10, 2025 | Jun 24, 2025 | Jul 17, 2025 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:N/I:P/A:N)
Published
Apr 10, 2025
Added
Jun 24, 2025
Modified
Jul 17, 2025
Description
In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.
A flaw was found in OpenSSH. In affected versions of sshd, the DisableForwarding directive does not fully adhere to the intended functionality as documented. Specifically, it fails to disable X11 and agent forwarding, which may allow unintended access under certain configurations.
A flaw was found in OpenSSH. In affected versions of sshd, the DisableForwarding directive does not fully adhere to the intended functionality as documented. Specifically, it fails to disable X11 and agent forwarding, which may allow unintended access under certain configurations.
Solutions
amazon-linux-2023-upgrade-opensshamazon-linux-2023-upgrade-openssh-clientsamazon-linux-2023-upgrade-openssh-clients-debuginfoamazon-linux-2023-upgrade-openssh-debuginfoamazon-linux-2023-upgrade-openssh-debugsourceamazon-linux-2023-upgrade-openssh-keycatamazon-linux-2023-upgrade-openssh-keycat-debuginfoamazon-linux-2023-upgrade-openssh-serveramazon-linux-2023-upgrade-openssh-server-debuginfoamazon-linux-2023-upgrade-pam-ssh-agent-authamazon-linux-2023-upgrade-pam-ssh-agent-auth-debuginfo
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.