Flexibility, performance and robustness are defining KrakenD just to name a few, we were able to quickly and easily build a robust gateway for our systems and we keep enjoying it everyday.
Samy Lastmann
CTO / Smart Tribune
CVE-2025-58185
Medium
· CVSS 5.3
Medium ImpactThis CVE can affect KrakenD under specific conditions. Review the affected versions below and upgrade if your deployment is exposed.
Component
Go standard library (encoding/asn1)
Disclosed
Oct 8, 2025
CVSS Score
5.3
encoding/asn1 package causes
large upfront memory allocation, leading to memory exhaustion. DER encoding is used
pervasively in TLS certificate parsing. A network-accessible attacker can trigger
this by presenting a crafted certificate during TLS handshake. Fixed in Go 1.24.8
and Go 1.25.2.Community Edition
2.11.1
addresses this CVE
Affected CE versions
>= 2.0, < 2.11.1
Enterprise Edition
2.11.2
addresses this CVE
Affected EE versions
>= 2.0, < 2.11.2
Upgrade to the addressed version or later to remediate this vulnerability.
Stay up to date with KrakenD releases and important updates