CVE-2025-8556
Published: Aug 6, 2025
Modified: Feb 25, 2026
CVSS v3.1
3.7
Description
A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange.
| Vendor | Product | Versions |
|---|---|---|
Unknown | circl | affected 0 - < 1.6.1 |
Red Hat | Builds for Red Hat OpenShift | All versions |
Red Hat | Builds for Red Hat OpenShift | All versions |
Red Hat | Builds for Red Hat OpenShift | All versions |
Red Hat | Builds for Red Hat OpenShift | All versions |
Red Hat | Builds for Red Hat OpenShift | All versions |
Red Hat | Builds for Red Hat OpenShift | All versions |
Red Hat | Custom Metric Autoscaler operator for Red Hat Openshift | All versions |
Red Hat | Custom Metric Autoscaler operator for Red Hat Openshift | All versions |
Red Hat | Custom Metric Autoscaler operator for Red Hat Openshift | All versions |
Red Hat | Custom Metric Autoscaler operator for Red Hat Openshift | All versions |
Red Hat | Custom Metric Autoscaler operator for Red Hat Openshift | All versions |
Red Hat | Multicluster Global Hub | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Pipelines | All versions |
Red Hat | OpenShift Serverless | All versions |
Red Hat | OpenShift Serverless | All versions |
Red Hat | OpenShift Serverless | All versions |
Red Hat | OpenShift Serverless | All versions |
Red Hat | OpenShift Service Mesh 3 | All versions |
Red Hat | OpenShift Service Mesh 3 | All versions |
Red Hat | OpenShift Service Mesh 3 | All versions |
Red Hat | OpenShift Service Mesh 3 | All versions |
Red Hat | OpenShift Service Mesh 3 | All versions |
Red Hat | OpenShift Service Mesh 3 | All versions |
Red Hat | OpenShift Service Mesh 3 | All versions |
Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 | All versions |
Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 | All versions |
Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 | All versions |
Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 | All versions |
Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 | All versions |
Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 | All versions |
Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 | All versions |
Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 | All versions |
Red Hat | Red Hat Advanced Cluster Security 4 | All versions |
Red Hat | Red Hat Advanced Cluster Security 4 | All versions |
Red Hat | Red Hat Advanced Cluster Security 4 | All versions |
Red Hat | Red Hat Advanced Cluster Security 4 | All versions |
Red Hat | Red Hat Advanced Cluster Security 4 | All versions |
Red Hat | Red Hat Advanced Cluster Security 4 | All versions |
Red Hat | Red Hat Advanced Cluster Security 4 | All versions |
Red Hat | Red Hat Advanced Cluster Security 4 | All versions |
Red Hat | Red Hat Advanced Cluster Security 4 | All versions |
Red Hat | Red Hat Advanced Cluster Security 4 | All versions |
Red Hat | Red Hat Ceph Storage 5 | All versions |
Red Hat | Red Hat Ceph Storage 5 | All versions |
Red Hat | Red Hat Ceph Storage 6 | All versions |
Red Hat | Red Hat Ceph Storage 6 | All versions |
Red Hat | Red Hat Ceph Storage 8 | All versions |
Red Hat | Red Hat Ceph Storage 8 | All versions |
Red Hat | Red Hat Developer Hub | All versions |
Red Hat | Red Hat Developer Hub | All versions |
Red Hat | Red Hat Edge Manager preview | All versions |
Red Hat | Red Hat Edge Manager preview | All versions |
Red Hat | Red Hat Edge Manager preview | All versions |
Red Hat | Red Hat Edge Manager preview | All versions |
Red Hat | Red Hat Edge Manager preview | All versions |
Red Hat | Red Hat Edge Manager preview | All versions |
Red Hat | Red Hat Edge Manager preview | All versions |
Red Hat | Red Hat Edge Manager preview | All versions |
Red Hat | Red Hat Edge Manager preview | All versions |
Red Hat | Red Hat Edge Manager preview | All versions |
Red Hat | Red Hat Enterprise Linux 10 | All versions |
Red Hat | Red Hat Enterprise Linux 9 | All versions |
Red Hat | Red Hat Enterprise Linux AI (RHEL AI) | All versions |
Red Hat | Red Hat Enterprise Linux AI (RHEL AI) | All versions |
Red Hat | Red Hat Enterprise Linux AI (RHEL AI) | All versions |
Red Hat | Red Hat Enterprise Linux AI (RHEL AI) | All versions |
Red Hat | Red Hat Enterprise Linux AI (RHEL AI) | All versions |
Red Hat | Red Hat Enterprise Linux AI (RHEL AI) | All versions |
Red Hat | Red Hat Enterprise Linux AI (RHEL AI) | All versions |
Red Hat | Red Hat Enterprise Linux AI (RHEL AI) | All versions |
Red Hat | Red Hat Enterprise Linux AI (RHEL AI) | All versions |
Red Hat | Red Hat Enterprise Linux AI (RHEL AI) | All versions |
Red Hat | Red Hat OpenShift AI (RHOAI) | All versions |
Red Hat | Red Hat OpenShift AI (RHOAI) | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Container Platform 4 | All versions |
Red Hat | Red Hat OpenShift Dev Workspaces Operator | All versions |
Red Hat | Red Hat OpenShift Dev Workspaces Operator | All versions |
Red Hat | Red Hat OpenShift Dev Workspaces Operator | All versions |
Red Hat | Red Hat OpenShift for Windows Containers | All versions |
Red Hat | Red Hat OpenShift for Windows Containers | All versions |
Red Hat | Red Hat OpenShift GitOps | All versions |
Red Hat | Red Hat OpenShift GitOps | All versions |
Red Hat | Red Hat OpenShift GitOps | All versions |
Red Hat | Red Hat OpenShift GitOps | All versions |
Red Hat | Red Hat OpenShift Virtualization 4 | All versions |
Red Hat | Red Hat OpenStack Platform 16.2 | All versions |
Red Hat | Red Hat OpenStack Platform 16.2 | All versions |
Red Hat | Red Hat OpenStack Platform 16.2 | All versions |
Red Hat | Red Hat OpenStack Platform 17.1 | All versions |
Red Hat | Red Hat OpenStack Platform 17.1 | All versions |
Red Hat | Red Hat OpenStack Platform 17.1 | All versions |
Red Hat | Red Hat Trusted Application Pipeline | All versions |
Red Hat | Red Hat Trusted Artifact Signer | All versions |
Red Hat | Red Hat Trusted Artifact Signer | All versions |
Red Hat | Red Hat Trusted Artifact Signer | All versions |
Red Hat | Red Hat Trusted Artifact Signer | All versions |
Red Hat | Red Hat Trusted Artifact Signer | All versions |
Red Hat | Red Hat Trusted Artifact Signer | All versions |
Red Hat | Red Hat Trusted Artifact Signer | All versions |
Red Hat | Red Hat Trusted Artifact Signer | All versions |
Red Hat | Red Hat Trusted Profile Analyzer | All versions |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now