Share
## https://sploitus.com/exploit?id=5EF2AA92-61A3-599D-BA62-AC333D058FC7
# CVE-2025-32433 ๋ถ„์„ ํฌํŠธํด๋ฆฌ์˜ค

> Erlang/OTP SSH ์‚ฌ์ „์ธ์ฆ ์›๊ฒฉ ์ฝ”๋“œ ์‹คํ–‰ ์ทจ์•ฝ์  ๋ถ„์„ ยท ๋ชจ์˜ํ•ดํ‚น ์‹ฌํ™”๊ณผ์ • 5~7์ฃผ์ฐจ ๊ณผ์ œ

## ๊ฐœ์š”

| ํ•ญ๋ชฉ | ๋‚ด์šฉ |
|------|------|
| CVE ID | CVE-2025-32433 |
| CVSS | 10.0 (Critical) |
| ์ทจ์•ฝ์  ์œ ํ˜• | CWE-306 Pre-Auth RCE |
| ์˜ํ–ฅ | Erlang/OTP SSH Server |
| ํŒจ์น˜ ๋ฒ„์ „ | OTP-27.3.3 / 26.2.5.11 / 25.3.2.20 |

## ํŽ˜์ด์ง€ ๊ตฌ์„ฑ

- **๊ฐœ์š”** โ€” CVSS 10.0 ์ •๋ณด, Erlang ์‚ฌ์šฉ์ฒ˜, ์ทจ์•ฝ ๋ฒ„์ „, MITRE ATT&CK
- **์‹ค์Šต ํ™˜๊ฒฝ** โ€” ๊ณต๊ฒฉ์ž/ํ”ผํ•ด์ž ๊ตฌ์„ฑ, ๋„คํŠธ์›Œํฌ ๊ตฌ์„ฑ๋„, Docker ๋ช…๋ น์–ด
- **๊ณต๊ฒฉ ๊ณผ์ •** โ€” 6๋‹จ๊ณ„ ํŒจํ‚ท ํ๋ฆ„, Phase 1(Go PoC) / Phase 2(Metasploit), ์ฝ”๋“œ ๋ถ„์„
- **์›์ธ ๋ถ„์„** โ€” ์ทจ์•ฝ/ํŒจ์น˜ ์ฝ”๋“œ ๋น„๊ต, RFC 4254 ์„ค๋ช…, ์˜ํ–ฅ ๋ฒ”์œ„
- **๋Œ€์‘ ๋ฐฉ์•ˆ** โ€” ์šฐ์„ ์ˆœ์œ„๋ณ„ ๋Œ€์‘, Snort Detection Rule, ์ฐธ๊ณ ์ž๋ฃŒ

## ์‹ค์Šต ํ™˜๊ฒฝ

| ๊ตฌ๋ถ„ | ๋‚ด์šฉ |
|------|------|
| ๊ณต๊ฒฉ์ž | Kali Linux (VMware NAT) ยท 192.168.10.10 |
| ํ”ผํ•ด์ž | Windows 11 + Docker Desktop ยท 172.30.1.94:2222 |
| ์ทจ์•ฝ ์ด๋ฏธ์ง€ | [ProDefense/CVE-2025-32433](https://github.com/ProDefense/CVE-2025-32433) |
| PoC ๋„๊ตฌ | [joshuavanderpoll/CVE-2025-32433](https://github.com/joshuavanderpoll/CVE-2025-32433) |

## ๋กœ์ปฌ ์‹คํ–‰

```bash
npm install
npm run dev
# http://localhost:3000
```

## ๋ฐฐํฌ

[![Deploy with Vercel](https://vercel.com/button)](https://vercel.com/new/clone?repository-url=https://github.com/leehunkoo/hk_CVE-2025-32433)

## ์ฐธ๊ณ ์ž๋ฃŒ

- [NVD CVE-2025-32433](https://nvd.nist.gov/vuln/detail/CVE-2025-32433)
- [GitHub Security Advisory](https://github.com/erlang/otp/security/advisories/GHSA-37cp-fgq5-7wc2)
- [Rapid7 Metasploit Wrap-Up](https://www.rapid7.com/blog/post/2025/05/09/metasploit-wrap-up-05-09-2025/)
- [RFC 4254 SSH Connection Protocol](https://www.rfc-editor.org/rfc/rfc4254)

---

**์ดํ›ˆ๊ตฌ** ยท ๋ชจ์˜ํ•ดํ‚น ์‹ฌํ™”๊ณผ์ • 5~7์ฃผ์ฐจ CVE ๋ถ„์„ ๊ณผ์ œ