CVE-2025-32728

Summary

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.

Affected Software

VendorProductVersion RangeStatus
OpenBSDOpenSSH7.4 < 10.0affected

Weaknesses

  • CWE-440: CWE-440 Expected Behavior Violation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References