CVE-2025-22866

low-risk

Published 2025-02-06

Due to the usage of a variable time instruction in the assembly implementation of an internal function, a small number of bits of secret scalars are leaked on the ppc64le architecture. Due to the way this function is used, we do not believe this leakage is enough to allow recovery of the private key when P-256 is used in any well known protocols.

Do I need to act?

0.02% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 4.0/10 Medium

LOCAL / LOW complexity

References (5)

https://go.dev/cl/643735

https://go.dev/issue/71383

https://groups.google.com/g/golang-announce/c/xU1ZCHUZw3k

https://pkg.go.dev/vuln/GO-2025-3447

https://security.netapp.com/advisory/ntap-20250221-0002/

/ 100

low-risk

Severity 14/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal