How to fix CVE-2025-46807?

Within 24 hours: Inventory all systems running sslh and document versions; assess exposure in production environments and implement network-level access controls to trusted sources only. Within 7 days: Deploy rate limiting and connection throttling at the network perimeter; consider load balancer rules to detect and drop suspicious connection patterns; evaluate upgrade timeline for sslh once patch is released. Within 30 days: Upgrade to sslh 2.2.4 or later as soon as patch becomes available; conduct post-patch validation testing; review and optimize resource allocation policies for the sslh service.

Is Redhat affected by CVE-2025-46807?

CVE-2025-46807 is a denial-of-service vulnerability affecting sslh (an SSL/SSH multiplexer) that allows attackers to exhaust system resources and block legitimate users from accessing services.

CVE-2025-46807

EUVD-2025-16631 HIGH

2025-06-02 [email protected]

Information Disclosure Redhat Suse

8.7

CVSS 4.0

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Lifecycle Timeline

Patch Released

Mar 31, 2026 - 21:13 nvd

Patch available

EUVD ID Assigned

Mar 14, 2026 - 16:47 euvd

EUVD-2025-16631

Analysis Generated

Mar 14, 2026 - 16:47 vuln.today

CVE Published

Jun 02, 2025 - 12:15 nvd

HIGH 8.7

DescriptionNVD

A Allocation of Resources Without Limits or Throttling vulnerability in sslh allows attackers to easily exhaust the file descriptors in sslh and deny legitimate users service.This issue affects sslh before 2.2.4.

AnalysisAI

A remote code execution vulnerability in A Allocation of Resources Without Limits or Throttling vulnerability in sslh (CVSS 8.7) that allows attackers. High severity vulnerability requiring prompt remediation.

Technical ContextAI

Vulnerability type: remote code execution. CVSS 8.7 indicates high severity. Affects A Allocation of Resources Without Limits or Throttling vulnerability in sslh.

RemediationAI

Monitor vendor channels for patch availability.

Vendor StatusVendor

Ubuntu

Priority: Medium

sslh

Release	Status	Version
xenial	needs-triage	-
bionic	needs-triage	-
focal	needs-triage	-
jammy	needs-triage	-
noble	needs-triage	-
upstream	needs-triage	-
oracular	ignored	end of life, was needs-triage
plucky	ignored	end of life, was needs-triage
questing	needs-triage	-

Debian

Bug #1107213