CVE-2025-61985 | OpenBSD OpenSSH up to 10.0 ssh URI null byte or nul character

A vulnerability, which was classified as problematic, has been found in OpenBSD OpenSSH up to 10.0. This affects an unknown part of the component ssh URI Handler. This manipulation causes improper neutralization of null byte or nul character.

This vulnerability is tracked as CVE-2025-61985. The attack is restricted to local execution. No exploit exists.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More