CVE-2025-68121
Last modified
CVE-2025-68121 is a critical-severity vulnerability rated 10/10 on the CVSS scale. During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. EPSS estimates a 0.77% chance of exploitation in the next 30 days.
Description
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Golang | Go | < 1.24.13 | — |
| Golang | Go | >= 1.25.0, < 1.25.7 | — |
| Golang | Go | 1.26.0 | Rc1 |
References
- https://go.dev/issue/77217Exploit, Issue Tracking
- https://groups.google.com/g/golang-announce/c/K09ubi9FQFkMailing List, Third Party Advisory
- https://pkg.go.dev/vuln/GO-2026-4337Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2025-68121?
How severe is CVE-2025-68121?
How do I fix CVE-2025-68121?
Are you affected by CVE-2025-68121?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST