CVE-2025-68121
published 2026-02-05CVE-2025-68121: During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed…
PriorityP355critical10CVSS 3.1
AVNACLPRNUINSCCHIHAH
EPSS
0.77%
50.8th percentile
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | golang-1.15 | < golang-1.24 1.24.12-1 (forky) | golang-1.24 1.24.12-1 (forky) |
| debian | golang-1.19 | < golang-1.24 1.24.12-1 (forky) | golang-1.24 1.24.12-1 (forky) |
| debian | golang-1.24 | < golang-1.24 1.24.12-1 (forky) | golang-1.24 1.24.12-1 (forky) |
| debian | golang-1.25 | < golang-1.24 1.24.12-1 (forky) | golang-1.24 1.24.12-1 (forky) |
| github.com | argoproj-labs_terraform-provider-argocd | >= 0 < 1.2.3-0.20260316182343-b3364f3f32e7 | 1.2.3-0.20260316182343-b3364f3f32e7 |
| github.com | centrifugal_centrifugo_v6 | >= 0 < 6.6.1 | 6.6.1 |
| github.com | traefik_traefik | 0 – 1.7.34 | — |
| github.com | traefik_traefik_v2 | >= 0 < 2.11.37 | 2.11.37 |
| github.com | traefik_traefik_v3 | >= 0 < 3.6.8 | 3.6.8 |
| go_standard_library | crypto_tls | < 1.24.13 | 1.24.13 |
| go_standard_library | crypto_tls | >= 1.25.0-0 < 1.25.7 | 1.25.7 |
| go_standard_library | crypto_tls | >= 1.26.0-rc.1 < 1.26.0-rc.3 | 1.26.0-rc.3 |
| golang | go | < 1.24.13 | 1.24.13 |
| golang | go | — | — |
| golang | go | >= 1.25.0 < 1.25.7 | 1.25.7 |
| msrc | azl3_golang_1.26.0-1_on_azure_linux_3.0 | — | — |
CVSS provenance
nvdv3.110.0CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
ghsa10.0CRITICAL
osv10.0CRITICAL
vendor_debian10.0CRITICAL
vendor_redhat10.0CRITICAL
vendor_msrc7.4HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121 in github.com/argoproj-labs/terraform-provider-argocd
osv·2026-03-23·CVSS 10.0
CVE-2025-68121 [CRITICAL] Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121 in github.com/argoproj-labs/terraform-provider-argocd
Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121 in github.com/argoproj-labs/terraform-provider-argocd
Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121 in github.com/argoproj-labs/terraform-provider-argocd
GHSA
Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121
ghsa·2026-03-18·CVSS 10.0
CVE-2025-68121 [CRITICAL] CWE-1395 Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121
Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121
### Summary
The terraform-provider-argocd might have been vulnerable to GO-2026-4337 / CVE-2025-68121 ("Unexpected session resumption in crypto/tls").
### Details
See https://pkg.go.dev/vuln/GO-2026-4337 for the upstream vulnerability.
Provider versions starting with `v7.15.1` are using `go 1.25.8` for building and are thus no longer affected.
OSV
Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121
osv·2026-03-18·CVSS 10.0
CVE-2025-68121 [CRITICAL] Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121
Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121
### Summary
The terraform-provider-argocd might have been vulnerable to GO-2026-4337 / CVE-2025-68121 ("Unexpected session resumption in crypto/tls").
### Details
See https://pkg.go.dev/vuln/GO-2026-4337 for the upstream vulnerability.
Provider versions starting with `v7.15.1` are using `go 1.25.8` for building and are thus no longer affected.
OSV
Traefik affected by TLS ClientAuth Bypass on HTTP/3
osv·2026-02-20·CVSS 10.0
CVE-2025-68121 [CRITICAL] Traefik affected by TLS ClientAuth Bypass on HTTP/3
Traefik affected by TLS ClientAuth Bypass on HTTP/3
### Summary
There is a potential vulnerability in Traefik managing HTTP/3 connections.
More details in the [CVE-2025-68121](https://nvd.nist.gov/vuln/detail/CVE-2025-68121).
## Patches
- https://github.com/traefik/traefik/releases/tag/v2.11.37
- https://github.com/traefik/traefik/releases/tag/v3.6.8
## Workarounds
No workaround
## For more information
If you have any questions or comments about this advisory, please [open an issue](https://github.com/traefik/traefik/issues).
GHSA
Traefik affected by TLS ClientAuth Bypass on HTTP/3
ghsa·2026-02-20·CVSS 10.0
CVE-2025-68121 [CRITICAL] CWE-1395 Traefik affected by TLS ClientAuth Bypass on HTTP/3
Traefik affected by TLS ClientAuth Bypass on HTTP/3
### Summary
There is a potential vulnerability in Traefik managing HTTP/3 connections.
More details in the [CVE-2025-68121](https://nvd.nist.gov/vuln/detail/CVE-2025-68121).
## Patches
- https://github.com/traefik/traefik/releases/tag/v2.11.37
- https://github.com/traefik/traefik/releases/tag/v3.6.8
## Workarounds
No workaround
## For more information
If you have any questions or comments about this advisory, please [open an issue](https://github.com/traefik/traefik/issues).
GHSA
Centrifugo v6.6.0 dependency vulnerabilities
ghsa·2026-02-19·CVSS 7.5
CVE-2025-68121 [HIGH] CWE-1395 Centrifugo v6.6.0 dependency vulnerabilities
Centrifugo v6.6.0 dependency vulnerabilities
### Summary
Centrifugo v6.6.0 binary is compiled with **Go 1.25.5** and
statically links `github.com/quic-go/webtransport-go v0.9.0`, having **7 known
CVEs**
**Go standard library — compiled with Go 1.25.5:**
| CVE | Severity | CVSS | Fixed In |
|-----|----------|------|----------|
| CVE-2025-68121 | **CRITICAL** | 10.0 | Go 1.25.7, 1.24.13 |
| CVE-2025-61726 | HIGH | 7.5 | Go 1.25.6, 1.24.12 |
| CVE-2025-61728 | MEDIUM | 6.5 | Go 1.25.6, 1.24.12 |
| CVE-2025-61730 | MEDIUM | 5.3 | Go 1.25.6, 1.24.12 |
**Direct dependency `github.com/quic-go/webtransport-go` — pinned at v0.9.0
(`go.mod` line 34):**
| CVE | Severity | CVSS | Fixed In |
|-----|----------|------|----------|
| CVE-2026-21434 | MEDIUM | 5.3 | webtransport-go v0.10.0 |
| CVE-202
OSV
Centrifugo v6.6.0 dependency vulnerabilities
osv·2026-02-19·CVSS 7.5
CVE-2025-68121 [HIGH] Centrifugo v6.6.0 dependency vulnerabilities
Centrifugo v6.6.0 dependency vulnerabilities
### Summary
Centrifugo v6.6.0 binary is compiled with **Go 1.25.5** and
statically links `github.com/quic-go/webtransport-go v0.9.0`, having **7 known
CVEs**
**Go standard library — compiled with Go 1.25.5:**
| CVE | Severity | CVSS | Fixed In |
|-----|----------|------|----------|
| CVE-2025-68121 | **CRITICAL** | 10.0 | Go 1.25.7, 1.24.13 |
| CVE-2025-61726 | HIGH | 7.5 | Go 1.25.6, 1.24.12 |
| CVE-2025-61728 | MEDIUM | 6.5 | Go 1.25.6, 1.24.12 |
| CVE-2025-61730 | MEDIUM | 5.3 | Go 1.25.6, 1.24.12 |
**Direct dependency `github.com/quic-go/webtransport-go` — pinned at v0.9.0
(`go.mod` line 34):**
| CVE | Severity | CVSS | Fixed In |
|-----|----------|------|----------|
| CVE-2026-21434 | MEDIUM | 5.3 | webtransport-go v0.10.0 |
| CVE-202
OSV
Unexpected session resumption in crypto/tls
osv·2026-02-05
CVE-2025-68121 Unexpected session resumption in crypto/tls
Unexpected session resumption in crypto/tls
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.
GHSA
GHSA-h355-32pf-p2xm: During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the re
ghsa_unreviewed·2026-02-05
CVE-2025-68121 [MEDIUM] CWE-295 GHSA-h355-32pf-p2xm: During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the re
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.
OSV
CVE-2025-68121: During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the re
osv·2026-02-05·CVSS 10.0
CVE-2025-68121 [CRITICAL] CVE-2025-68121: During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the re
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.
Microsoft
Unexpected session resumption in crypto/tls
vendor_msrc·2026-02-10·CVSS 7.4
CVE-2025-68121 [CRITICAL] CWE-295 Unexpected session resumption in crypto/tls
Unexpected session resumption in crypto/tls
Mariner: Mariner
Go: Go
Customer Action Required: Yes
Red Hat
crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption
vendor_redhat·2026-02-05·CVSS 10.0
CVE-2025-68121 [CRITICAL] crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption
crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumpt
Debian
CVE-2025-68121: golang-1.15 - During session resumption in crypto/tls, if the underlying Config has its Client...
vendor_debian·2025·CVSS 10.0
CVE-2025-68121 [CRITICAL] CVE-2025-68121: golang-1.15 - During session resumption in crypto/tls, if the underlying Config has its Client...
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.
Scope: local
bullseye: open
No detection rules found.
No public exploits indexed.
Wiz
CVE-2025-68121 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 10.0
CVE-2025-68121 [CRITICAL] CVE-2025-68121 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-68121 :
cAdvisor vulnerability analysis and mitigation
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.
Wiz Threat Research note: This vulnerability's CVSS vector has been overridden to Privileges Required HIGH by the Wiz Research team, as exploita
Wiz
CVE-2025-47911 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.3
CVE-2025-47911 [MEDIUM] CVE-2025-47911 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-47911 :
Terraform Community vulnerability analysis and mitigation
The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.
Source : NVD
## 5.3
Score
Published February 5, 2026
Severity MEDIUM
CNA Score 5.3
Affected Technologies
Terraform Community
Packer
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 3.6
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cri-o
kubernetes
Sources
NVD
CBL-Mariner 2.0 Severity MEDIUM Has Fix Added at: Mar 04, 2026
CBL-Mariner 3.0 Severity MEDIUM Has Fix Added at: M
Wiz
CVE-2025-66580 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.0
CVE-2025-66580 [HIGH] CVE-2025-66580 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-66580 :
Dive vulnerability analysis and mitigation
javascript:
Source : NVD
## 9.6
Score
Published December 19, 2025
Severity CRITICAL
CNA Score 9.6
Affected Technologies
Dive
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 50.3
Exploitation Probability (EPSS) 0.3
Affected packages and libraries
dive
Sources
NVD
Homebrew Severity CRITICAL Has Fix Added at: Jan 04, 2026
Nix Severity CRITICAL Has Fix Added at: Jan 04, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Dive vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
CISA KEV exploi
Wiz
CVE-2026-33748 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 10.0
CVE-2026-33748 [CRITICAL] CVE-2026-33748 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-33748 :
Docker vulnerability analysis and mitigation
BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Prior to version 0.28.1, insufficient validation of Git URL fragment subdir components may allow access to files outside the checked-out Git repository root. Possible access is limited to files on the same mounted filesystem. The issue has been fixed in version v0.28.1 The issue affects only builds that use Git URLs with a subpath component. As a workaround, avoid building Dockerfiles from untrusted sources or using the subdir component from an untrusted Git repository where the subdir component could point to a symlink.
Source : NVD
## 8.2
Score
Published March 27, 2026
Severity HIGH
CNA Score 8.2
Wiz
CVE-2025-67499 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.6
CVE-2025-67499 [MEDIUM] CVE-2025-67499 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-67499 :
Docker vulnerability analysis and mitigation
The CNI portmap plugin allows containers to emulate opening a host port, forwarding that traffic to the container. Versions 1.6.0 through 1.8.0 inadvertently forward all traffic with the same destination port as the host port when the portmap plugin is configured with the nftables backend, thus ignoring the destination IP. This includes traffic not intended for the node itself, i.e. traffic to containers hosted on the node. Containers that request HostPort forwarding can intercept all traffic destined for that port. This requires that the portmap plugin be explicitly configured to use the nftables backend. This issue is fixed in version 1.9.0. To workaround, configure the portmap plugin to use the iptables backend. It does
Wiz
CVE-2025-11065 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.3
CVE-2025-11065 [MEDIUM] CVE-2025-11065 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-11065 :
Terraform Community vulnerability analysis and mitigation
A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in security-critical contexts.
Source : NVD
## 5.3
Score
Published January 26, 2026
Severity MEDIUM
CNA Score 5.3
Affected Technologies
Terraform Community
Packer
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 0.8
Exploitation Probability (EPSS) N/A
Affected packages and libraries
grafana-11.2
kyverno-fips-1.12
Sources
NVD
Wiz
CVE-2026-33809 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 10.0
CVE-2026-33809 [CRITICAL] CVE-2026-33809 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-33809 :
Rclone vulnerability analysis and mitigation
A maliciously crafted TIFF file can cause image decoding to attempt to allocate up 4GiB of memory, causing either excessive resource consumption or an out-of-memory error.
Source : NVD
## 5.3
Score
Published March 25, 2026
Severity MEDIUM
CNA Score 5.3
Affected Technologies
Rclone
Wolfi
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 10.5
Exploitation Probability (EPSS) N/A
Affected packages and libraries
go-toolset:rhel8::golang-tests
golang-bin
Sources
NVD
Chainguard Has Fix Added at: Mar 31, 2026
Debian 11, 12, 13 Severity MEDIUM No Fix Added at: Mar 29, 2026
Debian 14 Severity MEDIUM Has Fix Added at: Mar 29
Wiz
GHSA-j9wf-6r2x-hqmx Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.5
CVE-2025-68121 [HIGH] GHSA-j9wf-6r2x-hqmx Impact, Exploitability, and Mitigation Steps | Wiz
## GHSA-j9wf-6r2x-hqmx :
vulnerability analysis and mitigation
## Summary
github.com/quic-go/webtransport-go v0.9.0
Go standard library — compiled with Go 1.25.5:
CVE-2025-68121
CRITICAL
10.0
Go 1.25.7, 1.24.13
CVE-2025-61726
HIGH
7.5
Go 1.25.6, 1.24.12
CVE-2025-61728
MEDIUM
6.5
Go 1.25.6, 1.24.12
CVE-2025-61730
MEDIUM
5.3
Go 1.25.6, 1.24.12
github.com/quic-go/webtransport-go
go.mod
CVE-2026-21434
MEDIUM
5.3
webtransport-go v0.10.0
CVE-2026-21435
MEDIUM
5.3
webtransport-go v0.10.0
CVE-2026-21438
MEDIUM
5.3
webtransport-go v0.10.0
Source : NVD
Published February 19, 2026
Severity MEDIUM
CNA Score N/A
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploit
Wiz
CVE-2026-33747 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 10.0
CVE-2026-33747 [CRITICAL] CVE-2026-33747 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-33747 :
Docker vulnerability analysis and mitigation
#syntax
--build-arg BUILDKIT_SYNTAX
docker/dockerfile
Source : NVD
## 9.8
Score
Published March 27, 2026
Severity CRITICAL
CNA Score 8.4
Affected Technologies
Docker
Datadog Agent
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 17.3
Exploitation Probability (EPSS) 0.1
Affected packages and libraries
podman-remote
zot
Sources
NVD
Alpine edge Severity CRITICAL Has Fix Added at: Mar 31, 2026
Chainguard Has Fix Added at: Mar 29, 2026
GoLang Severity HIGH Has Fix Added at: Mar 29, 2026
Homebrew Severity CRITICAL Has Fix Added at: Apr 05, 2026
MinimOS Severity CRITICAL Has Fix Added at: Mar 29, 2026
Nix Severity
Wiz
CVE-2026-23523 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.0
CVE-2026-23523 [HIGH] CVE-2026-23523 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-23523 :
Dive vulnerability analysis and mitigation
Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. Prior to 0.13.0, crafted deeplink can install an attacker-controlled MCP server configuration without sufficient user confirmation and can lead to arbitrary local command execution on the victim’s machine. This vulnerability is fixed in 0.13.0.
Source : NVD
## 8.8
Score
Published January 16, 2026
Severity HIGH
CNA Score 9.6
Affected Technologies
Dive
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 10
Exploitation Probability (EPSS) N/A
Affected packages and libraries
dive
Sources
NVD
Homebrew Severity HIGH Has Fix
Bugzilla
CVE-2025-68121 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption
bugzilla·2026-02-05·CVSS 10.0
CVE-2025-68121 [CRITICAL] CVE-2025-68121 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption
CVE-2025-68121 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 10
Via RHSA-2
2026-02-05
Published