Please login to access that KB Article

Please advise us the vulnerability CVE-2025-26465

Summary

Analysis of CVE-2025-26465 for AP and SZ

Question

Do SZ or AP have the issue of CVE-2025-26465?

Customer Environment

SZ R5.2.2 R6.1.0

Troubleshooting Steps

         AP is not vulnerable because:

  • VerifyHostKeyDNS option is not enabled in ssh_config.

  • It is disabled by default.
     

  • SZ is not affected because VerifyHostKeyDNS is not set in ssh_config and default value is "No".

  • SZ is a close system, where user cannot evoke ssh client command.

Resolution

SZ:
No impact from both of CVE-2025-26465 or CVE-2025-26466.

AP:
No impact from CVE-2025-26465.
R7.0+ has the impact from CVE-2025-26466. R7.1.1 patch 1 has the fix for this issue.

Article Number:
000014731

Updated:
March 25, 2026 06:23 AM (about 2 months ago)

Tags:
Security, SmartCell Gateway

Votes:
0

This article is:
helpful
not helpful

Working...Please wait

This is here to prevent you from accidentally submitting twice.

The page will automatically refresh.

Alert!!

Close