CVE-2025-22870

CVSS v3.1

4.4

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Name of the Vulnerable Software and Affected Versions Go versions prior to 1.24.1 and 1.23.7

Description A security issue was found in the net/http component. The estimated number of potentially affected devices worldwide is not specified. Details about real-world incidents where this issue was exploited are not provided.

Recommendations For versions prior to 1.24.1, update to version 1.24.1. For versions prior to 1.23.7, update to version 1.23.7.

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-115

Related Identifiers

ALT-PU-2025-10791

ALT-PU-2025-3850

ALT-PU-2025-3927

ALT-PU-2025-6549

ALT-PU-2025-7474

ALT-PU-2025-7475

AZL-58380

AZL-58386

AZL-58392

AZL-58396

AZL-58402

AZL-58404

AZL-58413

AZL-58416

AZL-58419

AZL-58422

AZL-58438

AZL-58440

AZL-58443

AZL-58446

AZL-58452

AZL-58455

AZL-58458

AZL-58469

AZL-58472

AZL-79030

BDU:2025-02476

CVE-2025-22870

ECHO-6D3F-307E-C4CF

GHSA-QXP5-GWG8-XV66

GO-2025-3503

MGASA-2025-0175

OESA-2025-1427

OPENSUSE-SU-2025:14855-1

OPENSUSE-SU-2025:14856-1

OPENSUSE-SU-2025:14863-1

OPENSUSE-SU-2025:14867-1

OPENSUSE-SU-2025:14889-1

OPENSUSE-SU-2025:14906-1

OPENSUSE-SU-2025:14909-1

OPENSUSE-SU-2025:14918-1

OPENSUSE-SU-2025:14988-1

OPENSUSE-SU-2025:15041-1

OPENSUSE-SU-2025:15054-1

OPENSUSE-SU-2025:15145-1

OPENSUSE-SU-2025:15162-1

OPENSUSE-SU-2025:15178-1

OPENSUSE-SU-2025:15253-1

OPENSUSE-SU-2025:15487-1

OPENSUSE-SU-2025:15779-1

OPENSUSE-SU-2025:20177-1

OPENSUSE-SU-2025_0802-1

OPENSUSE-SU-2025_0803-1

OPENSUSE-SU-2025_0873-1

OPENSUSE-SU-2025_0980-1

OPENSUSE-SU-2025_1007-1

OPENSUSE-SU-2025_1055-1

OPENSUSE-SU-2025_1094-1

OPENSUSE-SU-2025_1333-1

OPENSUSE-SU-2026:10230-1

SUSE-SU-2025:01731-1

SUSE-SU-2025:01985-1

SUSE-SU-2025:01987-1

SUSE-SU-2025:01988-1

SUSE-SU-2025:01989-1

SUSE-SU-2025:01990-1

SUSE-SU-2025:01991-1

SUSE-SU-2025:01992-1

SUSE-SU-2025:02014-1

SUSE-SU-2025:03159-1

SUSE-SU-2025:0802-1

SUSE-SU-2025:0803-1

SUSE-SU-2025:0866-1

SUSE-SU-2025:0873-1

SUSE-SU-2025:0980-1

SUSE-SU-2025:1007-1

SUSE-SU-2025:1055-1

SUSE-SU-2025:1094-1

SUSE-SU-2025:1333-1

SUSE-SU-2025:20179-1

SUSE-SU-2025:20184-1

SUSE-SU-2025:20196-1

SUSE-SU-2025:20210-1

SUSE-SU-2025:20278-1

SUSE-SU-2025:20328-1

SUSE-SU-2025:20373-1

SUSE-SU-2025:20504-1

SUSE-SU-2025:20515-1

SUSE-SU-2025_01987-1

SUSE-SU-2025_01988-1

SUSE-SU-2025_02014-1

SUSE-SU-2025_03159-1

SUSE-SU-2025_0802-1

SUSE-SU-2025_0803-1

SUSE-SU-2025_0866-1

SUSE-SU-2025_0873-1

SUSE-SU-2025_1007-1

SUSE-SU-2025_1055-1

SUSE-SU-2026:0439-1

SUSE-SU-2026:0592-1

USN-7574-1

Affected Products

Alt Linux

Astra Linux

Debian

Linuxmint

Red Os

Suse

Ubuntu

CVE-2025-22870

Weakness Enumeration

Related Identifiers

Affected Products

References · 370