CVE-2025-15638

Published: Apr 21, 2026 Last Modified: Apr 22, 2026

ExploitDB:

Other exploit source:

Google Dorks:

CRITICAL 10,0

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: changed

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

Net::Dropbear versions before 0.14 for Perl contains a vulnerable version of libtomcrypt.

Net::Dropbear versions before 0.14 includes versions of Dropbear 2019.78 or earlier. These include versions of libtomcrypt v1.18.1 or earlier, which is affected by CVE-2016-6129 and CVE-2018-12437.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0002

Percentile

0,1th

Updated

EPSS Score Trend (Last 4 Days)

Application

Net\ by Atrodo

Product Information

Vendor Atrodo

Product Net\

Version \

Version Range Affected

To 0.14 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:atrodo:net\:\:dropbear:*:*:*:*:*:perl:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://metacpan.org/release/ATRODO/Net-Dropbear-0.14/sourc…

https://metacpan.org/release/ATRODO/Net-Dropbear-0.14/source/dropbear/libtomcry…

https://www.cve.org/CVERecord?id=CVE-2016-6129

https://www.cve.org/CVERecord?id=CVE-2018-12437

CVE-2025-15638

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 4 Days)

Net\ by Atrodo

Product Information

Iscriviti alla newsletter