CVE-2025-47913

Опубликовано: 13 нояб. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

Ссылки

https://github.com/advisories/GHSA-56w8-48fp-6mgv
Third Party Advisory
https://go.dev/cl/700295
Patch
https://go.dev/issue/75178
Exploit
Issue Tracking
https://pkg.go.dev/vuln/GO-2025-4116
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:go:ssh:*:*:*:*:*:go:*:*

Версия до 0.43.0 (исключая)

EPSS

Процентиль: 9%

0.00032

Низкий

7.5 High

CVSS3

Дефекты

CWE-617

Связанные уязвимости

CVE-2025-47913

CVSS3: 7.5

ubuntu

2 месяца назад

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

CVE-2025-47913

CVSS3: 7.5

msrc

2 месяца назад

Potential denial of service in golang.org/x/crypto/ssh/agent

CVE-2025-47913

CVSS3: 7.5

debian

2 месяца назад

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed respons ...

openSUSE-SU-2025:20138-1

suse-cvrf

около 1 месяца назад

Security update for act

SUSE-SU-2025:4274-1

suse-cvrf

около 2 месяцев назад

Security update for buildah

EPSS

Процентиль: 9%

0.00032

Низкий

7.5 High

CVSS3

Дефекты

CWE-617