CVE-2025-46806 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	UNKNOWN				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 28%

Debian Releases

Debian Product

Codename

sslh

bookworm	1.20-1 not-affected
bullseye	1.20-1 not-affected
bullseye (security)	1.20-1+deb11u1 fixed
forky	vulnerable
sid	vulnerable
trixie	no-dsa

Ubuntu Releases

Ubuntu Product

Codename

sslh

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
noble	needs-triage
oracular	ignored
plucky	ignored
questing	needs-triage
xenial	needs-triage

Common Weakness Enumeration

CWE-823 - Use of Out-of-range Pointer Offset
The program performs pointer arithmetic on a valid pointer, but it uses an offset that can point outside of the intended range of valid memory locations for the resulting pointer.

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-46806

https://github.com/yrutschle/sslh/releases/tag/v2.2.4