Resource Exhaustion Vulnerability in sslh Affects Numerous Users
CVE-2025-46807

8.7HIGH

Key Information:

Vendor: Https://github.com/yrutschle/sslh/releases/tag/v2.2.4
Status: Sslh
Vendor: CVE Published:; 2 June 2025

🔔 Create Https://github.com/yrutschle/sslh/releases/tag/v2.2.4 Vulnerability Alert

What is CVE-2025-46807?

A resource exhaustion vulnerability in sslh permits attackers to deplete available file descriptors, leading to service denial for legitimate users. This issue impacts versions of sslh prior to 2.2.4, allowing malicious actors to overwhelm the system's resources, disrupting normal operations and access.

Affected Version(s)

sslh ? < 2.2.4

References

https://github.com/yrutschle/sslh/releases/tag/v2.2.4

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-46807

CVSS V4

Score:

8.7

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 2, 2025
Vulnerability Reserved
Apr 30, 2025

Credit

Matthias Gerstner, SUSE