AVG-2874 log
| Package | dropbear |
| Status | Fixed |
| Severity | Medium |
| Type | arbitrary command execution |
| Affected | 2025.87-1 |
| Fixed | 2025.88-1 |
| Current | 2025.88-2 [extra] |
| Ticket | None |
| Created | Mon May 19 16:50:31 2025 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2025-47203 | Medium | Yes | Arbitrary command execution | dbclient in Dropbear SSH before 2025.88 allows command injection via an untrusted hostname argument, because a shell is used. |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 19 May 2025 | ASA-202505-9 | dropbear | arbitrary command execution |