Security Advisory

CVE-2025-67897

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-14 04:35:24

Last updated 2025-12-15 21:29:01

Assigner mitre

State PUBLISHED

Description

In Sequoia before 2.1.0, aes_key_unwrap panics if passed a ciphertext that is too short. A remote attacker can take advantage of this issue to crash an application by sending a victim an encrypted message with a crafted PKESK or SKESK packet.

← Browse all CVEs View on cve.org ↗