Description

The ParseAddress function constructeds domain-literal address components through repeated string concatenation. When parsing large domain-literal components, this can cause excessive CPU consumption.

INFO

Published Date :

2025-10-29T22:10:12.255Z

Last Modified :

2025-11-04T21:14:05.236Z

Source :

Go
AFFECTED PRODUCTS

The following products are affected by CVE-2025-61725 vulnerability.

Vendors Products
Golang
  • Mail
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-61725.

URL Resource
https://go.dev/cl/709860 cve-icon cve-icon cve-icon
https://go.dev/issue/75680 cve-icon cve-icon cve-icon
https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-61725 cve-icon
https://pkg.go.dev/vuln/GO-2025-4006 cve-icon cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-61725 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact