Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2025-46806

UNKNOWN
Published 2025-06-02T12:11:20.267Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2025-46806. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

A Use of Out-of-range Pointer Offset vulnerability in sslh leads to denial of service on some architectures.This issue affects sslh before 2.2.4.

Available Exploits

No exploits available for this CVE.

Related News

sslh: Remote Denial-of-Service Vulnerabilities (CVE-2025-46807, CVE-2025-46806)

Posted by Matthias Gerstner on Jun 13Hello list, this is a review report about remote Denial-of-Service vulnerabilities in sslh. We also offer a rendered HTML version of this report on our blog [1]. Please find the full details below. 1) Introduction ======…

Seclists.org 2025-06-13 14:32
Read More

Affected Products

https://github.com/yrutschle/sslh/releases/tag/v2.2.4

sslh

Affected Versions:

?

EU Vulnerability Database

Monitored by ENISA for EU cybersecurity

EU Coordination

Not EU Coordinated

Exploitation Status

No Known Exploitation

EUVD ID

View on ENISA

ENISA Analysis

A Use of Out-of-range Pointer Offset vulnerability in sslh leads to denial of service on some architectures.This issue affects sslh before 2.2.4.

Affected Products (ENISA)

https://github.com/yrutschle/sslh/releases/tag/v2.2.4
sslh

ENISA Scoring

CVSS Score (4.0)

6.9
/10
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

EPSS Score

0.060
probability

ENISA References

https://github.com/yrutschle/sslh/releases/tag/v2.2.4
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-46806
https://nvd.nist.gov/vuln/detail/CVE-2025-46806

Data provided by ENISA EU Vulnerability Database. Last updated: June 2, 2025

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-9pc8-3wwf-wg5j

Advisory Details

A Use of Out-of-range Pointer Offset vulnerability in sslh leads to denial of service on some architectures.This issue affects sslh before 2.2.4.

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2025-46806
WEB https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-46806
WEB https://github.com/yrutschle/sslh/releases/tag/v2.2.4

Advisory provided by GitHub Security Advisory Database. Published: June 2, 2025, Modified: June 2, 2025

Social Media Intelligence

Real-time discussions and threat intelligence from social platforms

1 post
Reddit 2 weeks ago
Dark-Marc

New sslh Vulnerabilities Enable Remote Denial-of-Service Attacks **Two critical vulnerabilities in the popular sslh protocol demultiplexer could allow attackers to trigger remote DoS attacks and disrupt service availability.** **Key Points:** - CVE-2025-46807 allows file descriptor exhaustion leading to service crashes. - CVE-2025-46806 causes crashes due to misaligned memory access within …

Also mentions: CVE-2025-46807
1
1
3.0
View Original

References

https://github.com/yrutschle/sslh/releases/tag/v2.2.4
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-46806
Published: 2025-06-02T12:11:20.267Z
Last Modified: 2025-06-02T16:27:11.300Z
Copied to clipboard!