Select your cookie preferences

We use cookies and similar tools to enhance your experience, provide our services, deliver relevant advertising, and make improvements. Approved third parties also use these tools to help us deliver advertising and provide certain site features.

CVE-2025-22869

Public on 2025-02-26
Modified on 2025-03-18
Description

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.

Severity
Important
See what this means
CVSS v3 Base Score
7.5
See breakdown

Affected Packages

Platform Package Release Date Advisory
Amazon Linux 2 - Aws-nitro-enclaves-cli Extra docker 2025-04-09 19:43 ALAS2NITRO-ENCLAVES-2025-053
Amazon Linux 2 - Docker Extra docker 2025-04-09 19:43 ALAS2DOCKER-2025-056
Amazon Linux 2 - Ecs Extra docker 2025-04-09 19:43 ALAS2ECS-2025-054
Amazon Linux 2023 docker 2025-04-09 19:43 ALAS2023-2025-934
Amazon Linux 2 - Docker Extra runfinch-finch 2025-03-26 19:21 ALAS2DOCKER-2025-053
Amazon Linux 2023 runfinch-finch 2025-03-26 20:44 ALAS2023-2025-914

CVSS Scores

Score Type Score Vector
Amazon Linux CVSSv3 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
NVD CVSSv3 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Red Hat: CVE-2025-22869 Mitre: CVE-2025-22869 FAQs regarding Amazon Linux ALAS/CVE Severity