CVE-2025-13353

Name of the Vulnerable Software and Affected Versions gokey versions prior to 0.2.0

Description A flaw in the seed decryption logic caused passwords to be incorrectly derived using only a portion of the expected entropy when generating keys/secrets from a seed file. This resulted in potentially lower entropy keys and allowed a malicious entity to recover all passwords generated from a particular seed file without knowing the seed master password. The issue impacts keys/secrets generated from a seed file using the -s option, but does not affect keys generated from the master password alone or the confidentiality of the seed itself. Approximately 28 bytes of entropy were used instead of the expected 240 bytes.

Recommendations Upgrade to gokey version 0.2.0 or above to resolve the issue. Regenerate passwords/secrets using the patched version of gokey (0.2.0 and above) and provision/rotate these secrets into respective systems. For systems requiring the old password/secret for rotation, temporarily download gokey version 0.1.3 to recover the old password, then use gokey version 0.2.0 or above to generate the new password and populate the system’s password rotation form. For systems allowing multiple credentials, generate a new secret/key/credential using gokey version 0.2.0 or above, provision it in addition to the existing credential, verify access, and then revoke authorization for the old credential.