Description

Cowrie versions prior to 2.9.0 contain a server-side request forgery (SSRF) vulnerability in the emulated shell implementation of wget and curl. In the default emulated shell configuration, these command emulations perform real outbound HTTP requests to attacker-supplied destinations. Because no outbound request rate limiting was enforced, unauthenticated remote attackers could repeatedly invoke these commands to generate unbounded HTTP traffic toward arbitrary third-party targets, allowing the Cowrie honeypot to be abused as a denial-of-service amplification node and masking the attacker’s true source address behind the honeypot’s IP.

INFO

Published Date :

2025-12-31T21:36:19.022Z

Last Modified :

2026-03-05T12:04:26.318Z

Source :

VulnCheck
AFFECTED PRODUCTS

The following products are affected by CVE-2025-34469 vulnerability.

Vendors Products
Cowrie
  • Cowrie
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-34469.

URL Resource
https://github.com/advisories/GHSA-83jg-m2pm-4jxj cve-icon cve-icon cve-icon
https://github.com/cowrie/cowrie/issues/2622 cve-icon cve-icon
https://github.com/cowrie/cowrie/pull/2800 cve-icon cve-icon
https://github.com/cowrie/cowrie/releases/tag/v2.9.0 cve-icon cve-icon
https://www.vulncheck.com/advisories/cowrie-unrestricted-wget-curl-emulation-enables-ssrf-based-ddos-amplification cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact