Critical Erlang/OTP SSH Vulnerability (CVE-2025-32433) Exploited in OT Networks Since May 2025

A critical security vulnerability in Erlang/Open Telecom Platform (OTP) SSH, identified as CVE-2025-32433 with a CVSS score of 10.0, has been actively exploited by malicious actors since early May 2025. The vulnerability involves a missing authentication issue, allowing attackers to bypass authentication mechanisms and gain unauthorized access to systems. Approximately 70% of detections originate from firewalls protecting operational technology (OT) networks, highlighting the significant risk to critical infrastructure sectors such as manufacturing, energy, and utilities. Exploiting this vulnerability could lead to operational disruptions, data breaches, or even physical damage. Organizations using Erlang/OTP SSH should immediately apply patches to mitigate this vulnerability. Given the high CVSS score and active exploitation, prioritizing patch management is crucial. Additionally, monitoring network traffic for signs of exploitation and enhancing authentication mechanisms can help mitigate risks. Cybersecurity professionals should ensure that all systems using Erlang/OTP SSH are updated to the latest patched versions. Implementing network segmentation, especially for OT networks, can limit the spread of potential exploits. Continuous monitoring and intrusion detection systems should be configured to detect and alert on any suspicious activity related to this vulnerability.