Wiz
Vulnerability DatabaseCVE-2020-9283

CVE-2020-9283
Packer vulnerability analysis and mitigation

Overview

The vulnerability CVE-2020-9283 affects golang.org/x/crypto before version v0.0.0-20200220183623-bac4c82f6975. The vulnerability allows a panic during signature verification in the golang.org/x/crypto/ssh package, where a client can attack an SSH server that accepts public keys, and a server can attack any SSH client (NVD, CVE).

Technical details

The vulnerability has been assigned a CVSS v3.1 Base Score of 7.5 (HIGH) with the vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. The issue specifically involves the processing of crafted SSH ed25519 public keys that can cause applications using the SSH package of the golang.org/x/crypto library to stop working (NVD, Red Hat).

Impact

The vulnerability can lead to a denial of service condition when processing invalid public keys. When exploited, it can cause the affected application to panic and stop working, impacting the availability of SSH services (Debian LTS).

Mitigation and workarounds

The vulnerability has been fixed in golang.org/x/crypto version v0.0.0-20200220183623-bac4c82f6975 and later. Various Linux distributions have released security updates to address this vulnerability, including Debian and Red Hat. Users are recommended to upgrade their golang-go.crypto packages to the latest version (Debian LTS, Red Hat).

Additional resources

SourceThis report was generated using AI

Related Packer vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2025-47913HIGH7.5
  • PackerPacker
  • eks-distro-fips-1.30
NoYesNov 13, 2025
CVE-2025-61725HIGH7.5
  • cAdvisorcAdvisor
  • rancher-system-agent
NoYesOct 29, 2025
CVE-2025-58181MEDIUM5.3
  • cAdvisorcAdvisor
  • telegraf-1.35
NoYesNov 19, 2025
CVE-2025-47914MEDIUM5.3
  • cAdvisorcAdvisor
  • fq
NoYesNov 19, 2025
CVE-2025-61724MEDIUM5.3
  • cAdvisorcAdvisor
  • cloud-provider-gcp-cloud-controller-manager-fips
NoYesOct 29, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo