All vulnerabilities
CVE-2025-58181
Unbounded memory consumption in golang.org/x/crypto/ssh
Description
SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.
Patch Available
Fix available through Seal Security.
No upgrade required, protect your application instantly.
Fix without upgrading
Score
Severity
Ecosystem
GO
Publish Date
November 19, 2025
Modified Date
November 20, 2025
Score Vector
Affected Versions
