CVE-2025-5318: 
CBL Mariner vulnerability analysis and mitigation

A vulnerability (CVE-2025-5318) was discovered in the libssh library affecting all versions. The flaw exists in the SFTP server implementation, specifically within the sftp_handle() function. The vulnerability was disclosed on June 24, 2025, and is tracked with a CVSS v3.1 base score of 5.4 (Medium) (NVD, LibSSH Advisory).

The vulnerability stems from an incorrect comparison check in the sftp_handle() function within the SFTP server implementation. This boundary check error allows the function to access memory beyond the valid handle list, resulting in the return of an invalid pointer that is subsequently used in further processing. The vulnerability is classified as an Out-of-bounds Read (CWE-125) (NVD, LibSSH Advisory).

When exploited, this vulnerability could allow an authenticated remote attacker to read unintended memory regions. This could potentially lead to the exposure of sensitive information or affect service behavior. The vulnerability requires valid credentials to access the server, which limits its scope to legitimate users of the SFTP service (NVD).

Patches addressing the vulnerability have been released in libssh version 0.11.2. System administrators are advised to upgrade to this version as soon as possible. No workarounds are available for this vulnerability (LibSSH Advisory).