CVE-2025-52570 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Letmein is an authenticating port knocker. Prior to version 10.2.1, The connection limiter is implemented incorrectly. It allows an arbitrary amount of simultan…
Low CVSS: 1.7

CVE-2025-52570

Letmein is an authenticating port knocker. Prior to version 10.2.1, The connection limiter is implemented incorrectly. It allows an arbitrary amount of simultaneously incoming connections (TCP, UDP and Unix socket) for the services letmeind and letmeinfwd. Therefore, the command line option num-connections is not effective and does not limit the number of simultaneously incoming connections. This issue has been patched in version 10.2.1.
Vendor
-
Product
-
CWE
CWE-770
Yayın Tarihi
2025-06-24 04:15:50
Güncelleme
2025-06-26 18:58:14
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-770 LOW 2025

Referanslar

https://github.com/mbuesch/letmein/commit/43207cd77580410d97165d1e3c07361ba6f3558c https://github.com/mbuesch/letmein/security/advisories/GHSA-jpv7-p47h-f43j