vulnerability
Amazon Linux 2023: CVE-2025-32728: Low priority package update for openssh
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:N/I:P/A:N) | Apr 10, 2025 | Jun 24, 2025 | Mar 9, 2026 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:N/I:P/A:N)
Published
Apr 10, 2025
Added
Jun 24, 2025
Modified
Mar 9, 2026
Description
In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.
A flaw was found in OpenSSH. In affected versions of sshd, the DisableForwarding directive does not fully adhere to the intended functionality as documented. Specifically, it fails to disable X11 and agent forwarding, which may allow unintended access under certain configurations.
A flaw was found in OpenSSH. In affected versions of sshd, the DisableForwarding directive does not fully adhere to the intended functionality as documented. Specifically, it fails to disable X11 and agent forwarding, which may allow unintended access under certain configurations.
Solutions
amazon-linux-2023-upgrade-opensshamazon-linux-2023-upgrade-openssh-clientsamazon-linux-2023-upgrade-openssh-clients-debuginfoamazon-linux-2023-upgrade-openssh-debuginfoamazon-linux-2023-upgrade-openssh-debugsourceamazon-linux-2023-upgrade-openssh-keycatamazon-linux-2023-upgrade-openssh-keycat-debuginfoamazon-linux-2023-upgrade-openssh-serveramazon-linux-2023-upgrade-openssh-server-debuginfoamazon-linux-2023-upgrade-pam-ssh-agent-authamazon-linux-2023-upgrade-pam-ssh-agent-auth-debuginfo
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.