products / erlang

Erlang/OTP

Erlang/OTP powers distributed systems including RabbitMQ. NVD lists the product as cpe:2.3:a:erlang:erlang/otp. CVE-2025-32433 (SSH-related RCE, CVSS 10.0) is a high-profile 2025 reference; confirm ranges after ingestion.

api usage

Querying Erlang/OTP

product slugerlang

version format26.2.1, 27.3.4, semver

bash

curl "https://api.attestd.io/v1/check?product=erlang&version=26.2.1" \
  -H "Authorization: Bearer $ATTESTD_KEY"

json

{
  "product": "erlang",
  "version": "26.2.1",
  "supported": true,
  "risk_state": "critical",
  "risk_factors": [
    "remote_code_execution",
    "no_authentication_required",
    "patch_available",
    "internet_exposed_service"
  ],
  "actively_exploited": false,
  "remote_exploitable": true,
  "authentication_required": false,
  "patch_available": true,
  "fixed_version": "26.2.5",
  "confidence": 0.85,
  "cve_ids": ["CVE-2025-32433"],
  "last_updated": "2026-05-13T18:00:00Z",
  "supply_chain": null
}

safe version

bash

curl "https://api.attestd.io/v1/check?product=erlang&version=27.3.4" \
  -H "Authorization: Bearer $ATTESTD_KEY"

notable cves

CVE history

CVE	Description	CVSS
`CVE-2025-32433`	Unauthenticated remote code execution via SSH in the Erlang/OTP SSH daemon (CVSS 10.0).	10.0

All products RabbitMQ Go Response Field Reference