Auth bypass in Wolfssl Wolfssh

CVE-2025-11625

Improper host authentication vulnerability in wolfSSH version 1.4.20 and earlier clients that allows authentication bypass and leaking of clients credentials.

Vulnerability class: Broken Authentication

EPSS: 0.001 (20.8th percentile) — read the EPSS interpretation.