PT-2025-8666 · Teleport+8 · Teleport+8

Yuichi Watanabe

·

Publicado

2025-02-25

·

Atualizado

2026-06-15

·

CVE-2025-22869

CVSS v2.0

7.8

Alta

VetorAV:N/AC:L/Au:N/C:N/I:N/A:C
Nome do Software Vulnerável e Versões Afetadas Teleport (versões afetadas não especificadas)
Descrição O problema permite um ataque de negação de serviço contra servidores SSH que implementam protocolos de transferência de arquivos. Isso ocorre quando os clientes concluem a troca de chaves lentamente ou não a concluem, fazendo com que o conteúdo pendente seja lido na memória, mas nunca transmitido. Não há informações fornecidas sobre o número estimado de dispositivos potencialmente afetados em todo o mundo ou incidentes no mundo real onde este problema foi explorado.
Recomendações No momento, não há informações sobre uma versão mais recente que contenha uma correção para esta vulnerabilidade.

DoS

Allocation of Resources Without Limits

Resource Exhaustion

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-770CWE-400

Identificadores relacionados

ALSA-2025:3210
ALSA-2025:3833
ALSA-2025:7462
ALSA-2025:7484
ALT-PU-2025-7474
ALT-PU-2025-7475
AZL-57286
AZL-57289
AZL-57303
AZL-57323
AZL-57347
AZL-57350
AZL-57353
AZL-57362
AZL-57366
AZL-57369
AZL-57374
AZL-57393
AZL-57401
AZL-57428
AZL-57434
AZL-57437
AZL-57440
AZL-57458
AZL-57459
AZL-57473
AZL-57485
AZL-57488
BDU:2025-06560
CESA-2025_3210
CLEANSTART-2026-EJ93145
CLEANSTART-2026-HZ73294
CLEANSTART-2026-SQ68600
CVE-2025-22869
ECHO-4F9A-01C9-0571
GHSA-HCG3-Q754-CR77
GO-2025-3487
INFSA-2025_3210
INFSA-2025_3336
INFSA-2025_3833
INFSA-2025_7391
INFSA-2025_7416
OESA-2025-2092
OESA-2025-2093
OESA-2025-2297
OPENSUSE-SU-2025:0094-1
OPENSUSE-SU-2025:14839-1
OPENSUSE-SU-2025:14843-1
OPENSUSE-SU-2025:14877-1
OPENSUSE-SU-2025:14881-1
OPENSUSE-SU-2025:14883-1
OPENSUSE-SU-2025:14887-1
OPENSUSE-SU-2025:14900-1
OPENSUSE-SU-2025:14909-1
OPENSUSE-SU-2025:14918-1
OPENSUSE-SU-2025:14919-1
OPENSUSE-SU-2025:14923-1
OPENSUSE-SU-2025:14930-1
OPENSUSE-SU-2025:14932-1
OPENSUSE-SU-2025:14940-1
OPENSUSE-SU-2025:14985-1
OPENSUSE-SU-2025:14988-1
OPENSUSE-SU-2025:14990-1
OPENSUSE-SU-2025:15054-1
OPENSUSE-SU-2025:15220-1
OPENSUSE-SU-2025:15304-1
OPENSUSE-SU-2025:15305-1
OPENSUSE-SU-2025:15389-1
OPENSUSE-SU-2025:15454-1
OPENSUSE-SU-2025:15487-1
OPENSUSE-SU-2025:15763-1
OPENSUSE-SU-2025:20117-1
OPENSUSE-SU-2025:20143-1
OPENSUSE-SU-2025:20177-1
OPENSUSE-SU-2025_0980-1
OPENSUSE-SU-2025_1014-1
OPENSUSE-SU-2025_1017-1
OPENSUSE-SU-2025_1018-1
OPENSUSE-SU-2025_1036-1
OPENSUSE-SU-2025_1037-1
OPENSUSE-SU-2025_1038-1
OPENSUSE-SU-2025_1062-1
OPENSUSE-SU-2025_1094-1
OPENSUSE-SU-2025_1332-1
OPENSUSE-SU-2025_1333-1
OPENSUSE-SU-2026:10230-1
OPENSUSE-SU-2026:10921-1
OPENSUSE-SU-2026:20192-1
OPENSUSE-SU-2026:20305-1
OPENSUSE-SU-2026:20581-1
OPENSUSE-SU-2026:20620-1
OPENSUSE-SU-2026:20730-1
OPENSUSE-SU-2026:20798-1
OPENSUSE-SU-2026:20893-1
RHSA-2025:3165
RHSA-2025:3175
RHSA-2025:3184
RHSA-2025:3185
RHSA-2025:3186
RHSA-2025:3210
RHSA-2025:3266
RHSA-2025:3268
RHSA-2025:3336
RHSA-2025:3685
RHSA-2025:3833
RHSA-2025:7391
RHSA-2025:7416
RHSA-2025:7462
RHSA-2025:7484
RHSA-2025_3210
RHSA-2025_3336
RHSA-2025_3833
RHSA-2025_7391
RHSA-2025_7416
SUSE-RU-2025:02091-1
SUSE-RU-2025:02092-1
SUSE-RU-2025:02093-1
SUSE-SU-2025:03540-1
SUSE-SU-2025:03545-1
SUSE-SU-2025:0770-1
SUSE-SU-2025:0980-1
SUSE-SU-2025:1014-1
SUSE-SU-2025:1017-1
SUSE-SU-2025:1018-1
SUSE-SU-2025:1036-1
SUSE-SU-2025:1037-1
SUSE-SU-2025:1038-1
SUSE-SU-2025:1062-1
SUSE-SU-2025:1094-1
SUSE-SU-2025:1102-1
SUSE-SU-2025:1332-1
SUSE-SU-2025:1333-1
SUSE-SU-2025:20184-1
SUSE-SU-2025:20198-1
SUSE-SU-2025:20205-1
SUSE-SU-2025:20210-1
SUSE-SU-2025:20279-1
SUSE-SU-2025:20328-1
SUSE-SU-2025:20360-1
SUSE-SU-2025:20373-1
SUSE-SU-2025:20377-1
SUSE-SU-2025:20393-1
SUSE-SU-2025:20869-1
SUSE-SU-2025_1014-1
SUSE-SU-2025_1017-1
SUSE-SU-2025_1018-1
SUSE-SU-2025_1094-1
SUSE-SU-2026:0439-1
SUSE-SU-2026:0592-1
SUSE-SU-2026:0972-1
SUSE-SU-2026:1118-1
SUSE-SU-2026:1763-1
SUSE-SU-2026:20626-1
SUSE-SU-2026:20641-1
SUSE-SU-2026:21989-1
SUSE-SU-2026:22128-1

Produtos afetados

Alt Linux
Almalinux
Centos
Debian
Red Hat
Red Os
Rocky Linux
Suse
Teleport