CVE-2025-22873

CVSS v3.1

3.8

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Go versions prior to 1.24.3 Go versions prior to 1.23.9

Description The issue concerns a security fix in the os package.

Recommendations For versions prior to 1.24.3, update to version 1.24.3 to resolve the issue. For versions prior to 1.23.9, update to version 1.23.9 to resolve the issue.

Fix

Path traversal

Relative Path Traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22CWE-23

Related Identifiers

BDU:2025-07316

BIT-GOLANG-2025-22873

CVE-2025-22873

ECHO-CC1A-F211-D25D

GO-2026-4403

OPENSUSE-SU-2025:15058-1

OPENSUSE-SU-2025_1551-1

RHSA-2026:7291

RHSA-2026:7385

SUSE-SU-2025:01551-1

SUSE-SU-2025:01846-1

SUSE-SU-2025:1551-1

SUSE-SU-2025_01551-1

SUSE-SU-2025_01846-1

SUSE-SU-2025_1551-1

SUSE-SU-2026:0403-1

Affected Products

Red Os

CVE-2025-22873

Weakness Enumeration

Related Identifiers

Affected Products

References · 129