Description

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.

INFO

Published Date :

2025-02-26T03:07:48.855Z

Last Modified :

2025-04-11T22:03:24.222Z

Source :

Go
AFFECTED PRODUCTS

The following products are affected by CVE-2025-22869 vulnerability.

Vendors Products
Go
  • Ssh
Redhat
  • Acm
  • Advanced Cluster Security
  • Enterprise Linux
  • Gatekeeper
  • Multicluster Globalhub
  • Openshift
  • Openshift Builds
  • Openshift Data Foundation
  • Openshift Devspaces
  • Openshift Gitops
  • Rhel Aus
  • Rhel E4s
  • Rhel Eus
  • Rhel Tus
  • Trusted Artifact Signer
  • Windows Machine Config
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-22869.

URL Resource
https://go.dev/cl/652135 cve-icon cve-icon cve-icon
https://go.dev/issue/71931 cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-22869 cve-icon
https://pkg.go.dev/vuln/GO-2025-3487 cve-icon cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20250411-0010/ cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-22869 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact