Skip to main content

Ubuntu EUVDEUVD-2025-201106

| CVE-2025-61727 MEDIUM
Improper Certificate Validation (CWE-295)
2025-12-03 security@golang.org
6.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.5 MEDIUM
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Ubuntu
MEDIUM
qualitative
SUSE
MEDIUM
qualitative
Red Hat
6.5 MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

4
EUVD ID Assigned
Mar 15, 2026 - 16:14 euvd
EUVD-2025-201106
Analysis Generated
Mar 15, 2026 - 16:14 vuln.today
Patch released
Mar 15, 2026 - 16:14 nvd
Patch available
CVE Published
Dec 03, 2025 - 20:16 nvd
MEDIUM 6.5

DescriptionCVE.org

An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not prevent a leaf certificate from claiming the SAN *.example.com.

Analysis

An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not prevent a leaf certificate from claiming the SAN *.example.com.

Technical ContextAI

This vulnerability is classified as Improper Certificate Validation (CWE-295).

RemediationAI

A vendor patch is available. Apply it as soon as possible and verify the fix.

More in Go

View all
CVE-2016-5386 HIGH
8.1 Jul 19

The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and there

CVE-2025-68121 CRITICAL POC
10.0 Feb 05

Critical certificate validation bypass in Go crypto/tls during session resumption. If ClientCAs or RootCAs fields are mu

CVE-2019-14809 CRITICAL POC
9.8 Aug 13

net/url in Go before 1.11.13 and 1.12.x before 1.12.8 mishandles malformed hosts in URLs, leading to an authorization by

CVE-2018-7187 HIGH POC
8.8 Feb 16

The "go get" implementation in Go 1.9.4, when the -insecure command-line option is used, does not validate the import pa

CVE-2015-5739 CRITICAL
9.8 Oct 18

The net/http library in net/textproto/reader.go in Go before 1.4.3 does not properly parse HTTP header keys, which allow

CVE-2020-0601 HIGH POC
8.1 Jan 14

A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) c

CVE-2019-9634 HIGH POC
7.8 Mar 08

Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection. Rated high severity (CVS

CVE-2018-6574 HIGH POC
7.8 Feb 07

Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow "go get" remote command executi

CVE-2025-61726 HIGH POC
7.5 Jan 28

The net/url package does not set a limit on the number of query parameters in a query. While the maximum size of query p

CVE-2022-2880 HIGH POC
7.5 Oct 14

Requests forwarded by ReverseProxy include the raw query parameters from the inbound request, including unparsable param

CVE-2022-32189 HIGH POC
7.5 Aug 10

A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and

CVE-2022-30634 HIGH POC
7.5 Jul 15

Infinite loop in Read in crypto/rand before Go 1.17.11 and Go 1.18.3 on Windows allows attacker to cause an indefinite h

Vendor StatusVendor

Ubuntu

Priority: Medium
golang-1.24
Release Status Version
questing needs-triage -
upstream needs-triage -
plucky ignored end of life, was needs-triage
jammy needs-triage -
noble needs-triage -
golang-1.25
Release Status Version
jammy DNE -
noble DNE -
plucky DNE -
questing needs-triage -
upstream needs-triage -

Debian

Bug #1121848
golang-1.15
Release Status Fixed Version Urgency
bullseye vulnerable 1.15.15-1~deb11u4 -
(unstable) fixed (unfixed) -
golang-1.19
Release Status Fixed Version Urgency
bookworm vulnerable 1.19.8-2 -
(unstable) fixed (unfixed) -
golang-1.24
Release Status Fixed Version Urgency
trixie vulnerable 1.24.4-1 -
forky, sid fixed 1.24.13-2 -
(unstable) fixed 1.24.12-1 -
golang-1.25
Release Status Fixed Version Urgency
forky, sid fixed 1.25.8-1 -
(unstable) fixed 1.25.6-1 -

SUSE

Severity: Medium
Product Status
Container suse/sl-micro/6.0/baremetal-os-container:latest Affected
Container suse/sl-micro/6.0/base-os-container:2.1.3-7.7 Container suse/sl-micro/6.0/toolbox:13.2-9.2 Image SL-Micro Affected
Container suse/sl-micro/6.0/kvm-os-container:latest Container suse/sl-micro/6.0/rt-os-container:latest Affected
Container suse/sl-micro/6.1/baremetal-os-container:2.2.1-7.35 Affected
Container suse/sl-micro/6.1/base-os-container:2.2.1-5.57 Image SL-Micro-Azure Image SL-Micro-BYOS-Azure Image SL-Micro-BYOS-EC2 Image SL-Micro-BYOS-GCE Image SL-Micro-EC2 Image SUSE-Multi-Linux-Manager-Proxy-BYOS-Azure Image SUSE-Multi-Linux-Manager-Proxy-BYOS-EC2 Image SUSE-Multi-Linux-Manager-Proxy-BYOS-GCE Image SUSE-Multi-Linux-Manager-Server-Azure-llc Image SUSE-Multi-Linux-Manager-Server-Azure-ltd Image SUSE-Multi-Linux-Manager-Server-BYOS-Azure Image SUSE-Multi-Linux-Manager-Server-BYOS-EC2 Image SUSE-Multi-Linux-Manager-Server-BYOS-GCE Image SUSE-Multi-Linux-Manager-Server-EC2-llc Image SUSE-Multi-Linux-Manager-Server-EC2-ltd Affected

Share

EUVD-2025-201106 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy