High severity7.5GHSA Advisory· Published Aug 6, 2025· Updated Apr 15, 2026
CVE-2025-47908
CVE-2025-47908
Description
Middleware causes a prohibitive amount of heap allocations when processing malicious preflight requests that include a Access-Control-Request-Headers (ACRH) header whose value contains many commas. This behavior can be abused by attackers to produce undue load on the middleware/server as an attempt to cause a denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/rs/corsGo | >= 1.9.0, < 1.11.0 | 1.11.0 |
Affected products
157- osv-coords156 versionspkg:apk/chainguard/argo-cd-2.10pkg:apk/chainguard/argo-cd-2.10-compatpkg:apk/chainguard/argo-cd-2.10-repo-serverpkg:apk/chainguard/argo-cd-2.11pkg:apk/chainguard/argo-cd-2.11-compatpkg:apk/chainguard/argo-cd-2.11-repo-serverpkg:apk/chainguard/argo-cd-fips-2.10pkg:apk/chainguard/argo-cd-fips-2.10-compatpkg:apk/chainguard/argo-cd-fips-2.10-repo-serverpkg:apk/chainguard/argo-cd-fips-2.11pkg:apk/chainguard/argo-cd-fips-2.11-compatpkg:apk/chainguard/argo-cd-fips-2.11-repo-serverpkg:apk/chainguard/cortexpkg:apk/chainguard/cortex-fipspkg:apk/chainguard/datadog-agentpkg:apk/chainguard/datadog-agent-core-integrationspkg:apk/chainguard/datadog-agent-core-integrations-fipspkg:apk/chainguard/datadog-agent-fakeintakepkg:apk/chainguard/datadog-agent-fakeintake-fipspkg:apk/chainguard/datadog-agent-fipspkg:apk/chainguard/datadog-agent-jmxpkg:apk/chainguard/datadog-agent-jmx-fipspkg:apk/chainguard/datadog-agent-oci-compatpkg:apk/chainguard/datadog-agent-oci-compat-fipspkg:apk/chainguard/datadog-agent-s6-overlaypkg:apk/chainguard/datadog-agent-s6-overlay-fipspkg:apk/chainguard/datadog-cluster-agentpkg:apk/chainguard/datadog-cluster-agent-fipspkg:apk/chainguard/datadog-cluster-agent-oci-compatpkg:apk/chainguard/datadog-cluster-agent-oci-compat-fipspkg:apk/chainguard/dogstatsdpkg:apk/chainguard/fulciopkg:apk/chainguard/fulcio-fipspkg:apk/chainguard/go-ipfs-fipspkg:apk/chainguard/grafana-10.4pkg:apk/chainguard/grafana-10.4-oci-compatpkg:apk/chainguard/grafana-11.0pkg:apk/chainguard/grafana-11.1pkg:apk/chainguard/grafana-11.1-oci-compatpkg:apk/chainguard/grafana-fips-10.4pkg:apk/chainguard/grafana-fips-10.4-oci-compatpkg:apk/chainguard/grafana-fips-11.0pkg:apk/chainguard/grafana-fips-11.0-oci-compatpkg:apk/chainguard/grafana-fips-11.1pkg:apk/chainguard/grafana-fips-11.1-oci-compatpkg:apk/chainguard/grafana-mimirpkg:apk/chainguard/grafana-mimir-metaconvertpkg:apk/chainguard/grafana-mimir-mimirtoolpkg:apk/chainguard/grafana-mimir-query-teepkg:apk/chainguard/grafana-oci-compatpkg:apk/chainguard/ipfspkg:apk/chainguard/mattermost-9pkg:apk/chainguard/mattermost-9-compatpkg:apk/chainguard/prometheus-alertmanagerpkg:apk/chainguard/prometheus-alertmanager-bitnami-compatpkg:apk/chainguard/prometheus-alertmanager-fipspkg:apk/chainguard/prometheus-alertmanager-fips-iamguarded-compatpkg:apk/chainguard/prometheus-alertmanager-iamguarded-compatpkg:apk/chainguard/rekorpkg:apk/chainguard/rekor-backfill-indexpkg:apk/chainguard/rekor-backfill-redispkg:apk/chainguard/rekor-clipkg:apk/chainguard/rekor-fipspkg:apk/chainguard/rekor-fips-backfill-indexpkg:apk/chainguard/rekor-fips-backfill-redispkg:apk/chainguard/rekor-fips-clipkg:apk/chainguard/rekor-fips-serverpkg:apk/chainguard/rekor-serverpkg:apk/chainguard/tempo-2.3pkg:apk/chainguard/tempo-2.3-clipkg:apk/chainguard/tempo-2.3-querypkg:apk/chainguard/tempo-2.3-vulturepkg:apk/chainguard/tempo-fipspkg:apk/chainguard/tempo-fips-clipkg:apk/chainguard/tempo-fips-querypkg:apk/chainguard/tempo-fips-vulturepkg:apk/chainguard/timestamp-authoritypkg:apk/chainguard/timestamp-authority-clipkg:apk/chainguard/timestamp-authority-fipspkg:apk/chainguard/timestamp-authority-fips-clipkg:apk/chainguard/timestamp-authority-fips-serverpkg:apk/chainguard/timestamp-authority-serverpkg:apk/wolfi/argo-cd-2.10pkg:apk/wolfi/argo-cd-2.10-compatpkg:apk/wolfi/argo-cd-2.10-repo-serverpkg:apk/wolfi/argo-cd-2.11pkg:apk/wolfi/argo-cd-2.11-compatpkg:apk/wolfi/argo-cd-2.11-repo-serverpkg:apk/wolfi/cortexpkg:apk/wolfi/datadog-agentpkg:apk/wolfi/datadog-agent-core-integrationspkg:apk/wolfi/datadog-agent-fakeintakepkg:apk/wolfi/datadog-agent-jmxpkg:apk/wolfi/datadog-agent-oci-compatpkg:apk/wolfi/datadog-agent-s6-overlaypkg:apk/wolfi/datadog-cluster-agentpkg:apk/wolfi/datadog-cluster-agent-oci-compatpkg:apk/wolfi/dogstatsdpkg:apk/wolfi/fulciopkg:apk/wolfi/grafana-10.4pkg:apk/wolfi/grafana-11.0pkg:apk/wolfi/grafana-11.1pkg:apk/wolfi/grafana-mimirpkg:apk/wolfi/grafana-mimir-metaconvertpkg:apk/wolfi/grafana-mimir-mimirtoolpkg:apk/wolfi/grafana-mimir-query-teepkg:apk/wolfi/grafana-oci-compatpkg:apk/wolfi/ipfspkg:apk/wolfi/mattermost-9pkg:apk/wolfi/mattermost-9-compatpkg:apk/wolfi/prometheus-alertmanagerpkg:apk/wolfi/prometheus-alertmanager-bitnami-compatpkg:apk/wolfi/prometheus-alertmanager-iamguarded-compatpkg:apk/wolfi/rekorpkg:apk/wolfi/rekor-backfill-indexpkg:apk/wolfi/rekor-backfill-redispkg:apk/wolfi/rekor-clipkg:apk/wolfi/rekor-serverpkg:apk/wolfi/timestamp-authoritypkg:apk/wolfi/timestamp-authority-clipkg:apk/wolfi/timestamp-authority-serverpkg:golang/github.com/rs/corspkg:rpm/opensuse/golang-github-prometheus-alertmanager&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Tumbleweedpkg:rpm/suse/dracut-saltboot&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15pkg:rpm/suse/dracut-saltboot&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-Micro-5pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP7pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Manager%20Client%20Tools%2012pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Manager%20Client%20Tools%2015pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Manager%20Proxy%20LTS%204.3pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-12pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15pkg:rpm/suse/grafana&distro=SUSE%20Manager%20Client%20Tools%2012pkg:rpm/suse/grafana&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-12pkg:rpm/suse/grafana&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15pkg:rpm/suse/mgr-push&distro=SUSE%20Manager%20Client%20Tools%2012pkg:rpm/suse/mgr-push&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-12pkg:rpm/suse/mgr-push&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15pkg:rpm/suse/Multi-Linux-ManagerTools-SLE-release&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-12pkg:rpm/suse/python-defusedxml&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-12pkg:rpm/suse/python-defusedxml&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15pkg:rpm/suse/rhnlib&distro=SUSE%20Manager%20Client%20Tools%2012pkg:rpm/suse/rhnlib&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-12pkg:rpm/suse/rhnlib&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Client%20Tools%2012pkg:rpm/suse/spacecmd&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-12pkg:rpm/suse/spacecmd&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-12pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15pkg:rpm/suse/supportutils-plugin-susemanager-client&distro=SUSE%20Manager%20Client%20Tools%2012pkg:rpm/suse/supportutils-plugin-susemanager-client&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-12pkg:rpm/suse/supportutils-plugin-susemanager-client&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15pkg:rpm/suse/uyuni-tools&distro=SUSE%20Manager%20Client%20Tools%2012pkg:rpm/suse/uyuni-tools&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15pkg:rpm/suse/uyuni-tools&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-Micro-5
< 2.10.13-r2+ 155 more
- (no CPE)range: < 2.10.13-r2
- (no CPE)range: < 2.10.13-r2
- (no CPE)range: < 2.10.13-r2
- (no CPE)range: < 2.11.4-r2
- (no CPE)range: < 2.11.4-r2
- (no CPE)range: < 2.11.4-r2
- (no CPE)range: < 2.10.13-r2
- (no CPE)range: < 2.10.13-r2
- (no CPE)range: < 2.10.13-r2
- (no CPE)range: < 2.11.4-r2
- (no CPE)range: < 2.11.4-r2
- (no CPE)range: < 2.11.4-r2
- (no CPE)range: < 1.17.1-r4
- (no CPE)range: < 1.17.1-r6
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 1.4.5-r7
- (no CPE)range: < 1.4.5-r8
- (no CPE)range: < 0.29.0-r2
- (no CPE)range: < 10.4.5-r2
- (no CPE)range: < 10.4.5-r2
- (no CPE)range: < 11.0.1-r3
- (no CPE)range: < 11.1.0-r3
- (no CPE)range: < 11.1.0-r3
- (no CPE)range: < 10.4.5-r2
- (no CPE)range: < 10.4.5-r2
- (no CPE)range: < 11.0.1-r2
- (no CPE)range: < 11.0.1-r2
- (no CPE)range: < 11.1.0-r3
- (no CPE)range: < 11.1.0-r3
- (no CPE)range: < 2.13.0-r1
- (no CPE)range: < 2.13.0-r1
- (no CPE)range: < 2.13.0-r1
- (no CPE)range: < 2.13.0-r1
- (no CPE)range: < 11.0.1-r3
- (no CPE)range: < 0.29.0-r2
- (no CPE)range: < 9.9.1-r2
- (no CPE)range: < 9.9.1-r2
- (no CPE)range: < 0.27.0-r8
- (no CPE)range: < 0.27.0-r8
- (no CPE)range: < 0.27.0-r10
- (no CPE)range: < 0.27.0-r10
- (no CPE)range: < 0.27.0-r8
- (no CPE)range: < 1.3.6-r8
- (no CPE)range: < 1.3.6-r8
- (no CPE)range: < 1.3.6-r8
- (no CPE)range: < 1.3.6-r8
- (no CPE)range: < 1.3.6-r9
- (no CPE)range: < 1.3.6-r9
- (no CPE)range: < 1.3.6-r9
- (no CPE)range: < 1.3.6-r9
- (no CPE)range: < 1.3.6-r9
- (no CPE)range: < 1.3.6-r8
- (no CPE)range: < 2.3.1-r6
- (no CPE)range: < 2.3.1-r6
- (no CPE)range: < 2.3.1-r6
- (no CPE)range: < 2.3.1-r6
- (no CPE)range: < 2.5.0-r6
- (no CPE)range: < 2.5.0-r6
- (no CPE)range: < 2.5.0-r6
- (no CPE)range: < 2.5.0-r6
- (no CPE)range: < 1.2.2-r12
- (no CPE)range: < 1.2.2-r12
- (no CPE)range: < 1.2.2-r12
- (no CPE)range: < 1.2.2-r12
- (no CPE)range: < 1.2.2-r12
- (no CPE)range: < 1.2.2-r12
- (no CPE)range: < 2.10.13-r2
- (no CPE)range: < 2.10.13-r2
- (no CPE)range: < 2.10.13-r2
- (no CPE)range: < 2.11.4-r2
- (no CPE)range: < 2.11.4-r2
- (no CPE)range: < 2.11.4-r2
- (no CPE)range: < 1.17.1-r4
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.64.1-r0
- (no CPE)range: < 7.54.1-r3
- (no CPE)range: < 1.4.5-r7
- (no CPE)range: < 10.4.5-r2
- (no CPE)range: < 11.0.1-r3
- (no CPE)range: < 11.1.0-r3
- (no CPE)range: < 2.13.0-r1
- (no CPE)range: < 2.13.0-r1
- (no CPE)range: < 2.13.0-r1
- (no CPE)range: < 2.13.0-r1
- (no CPE)range: < 11.0.1-r3
- (no CPE)range: < 0.29.0-r2
- (no CPE)range: < 9.9.1-r2
- (no CPE)range: < 9.9.1-r2
- (no CPE)range: < 0.27.0-r8
- (no CPE)range: < 0.27.0-r8
- (no CPE)range: < 0.27.0-r8
- (no CPE)range: < 1.3.6-r8
- (no CPE)range: < 1.3.6-r8
- (no CPE)range: < 1.3.6-r8
- (no CPE)range: < 1.3.6-r8
- (no CPE)range: < 1.3.6-r8
- (no CPE)range: < 1.2.2-r12
- (no CPE)range: < 1.2.2-r12
- (no CPE)range: < 1.2.2-r12
- (no CPE)range: >= 1.9.0, < 1.11.0
- (no CPE)range: < 0.28.1-150100.4.28.2
- (no CPE)range: < 0.0.20250807T150727-1.1
- (no CPE)range: < 1.0.0-150002.3.3.1
- (no CPE)range: < 1.0.0-150002.3.3.1
- (no CPE)range: < 0.28.1-150100.4.28.2
- (no CPE)range: < 0.28.1-150100.4.28.2
- (no CPE)range: < 0.28.1-1.34.1
- (no CPE)range: < 0.28.1-150100.4.28.2
- (no CPE)range: < 0.28.1-150100.4.28.2
- (no CPE)range: < 0.28.1-120002.4.3.2
- (no CPE)range: < 0.28.1-150002.4.3.3
- (no CPE)range: < 11.5.10-1.87.1
- (no CPE)range: < 11.5.7-120002.4.3.2
- (no CPE)range: < 11.5.7-150002.4.3.3
- (no CPE)range: < 5.0.3-1.30.3
- (no CPE)range: < 5.1.4-120002.3.3.3
- (no CPE)range: < 5.1.4-150002.3.3.3
- (no CPE)range: < 12-120002.1.3.2
- (no CPE)range: < 0.6.0-120002.1.3.1
- (no CPE)range: < 0.7.1-150002.1.3.2
- (no CPE)range: < 5.0.6-21.55.1
- (no CPE)range: < 5.1.3-120002.3.3.1
- (no CPE)range: < 5.1.3-150002.3.3.2
- (no CPE)range: < 5.0.14-38.162.1
- (no CPE)range: < 5.1.11-120002.3.3.2
- (no CPE)range: < 5.1.11-150002.3.3.2
- (no CPE)range: < 5.1.7-120002.3.3.2
- (no CPE)range: < 5.1.7-150002.3.3.3
- (no CPE)range: < 5.0.5-6.36.1
- (no CPE)range: < 5.1.4-120002.3.3.1
- (no CPE)range: < 5.1.4-150002.3.3.2
- (no CPE)range: < 0.1.37-1.27.1
- (no CPE)range: < 5.1.20-150002.3.3.3
- (no CPE)range: < 5.1.20-150002.3.3.3
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.