Identity Impersonation Vulnerability in Keylime by Red Hat
CVE-2025-13609

8.2HIGH

Key Information:

Vendor

Keylime Project

Status
Keylime
Red Hat Enterprise Linux 10
Red Hat Enterprise Linux 10.0 Extended Update Support
Red Hat Enterprise Linux 9
Vendor
CVE Published:
24 November 2025

What is CVE-2025-13609?

A vulnerability exists in Keylime that allows an attacker to exploit the registration process of new agents. By utilizing a different Trusted Platform Module (TPM) device, the attacker can claim an existing agent's unique identifier (UUID). This impersonation overwrites the genuine agent’s identity, potentially allowing the attacker to bypass established security measures and gain unauthorized access.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

keylime 0 < 7.14.0

Red Hat Enterprise Linux 10 0:7.12.1-11.el10_1.3

Red Hat Enterprise Linux 10.0 Extended Update Support 0:7.12.1-2.el10_0.4

References

https://access.redhat.com/errata/RHSA-2025:23201
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:23210
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:23628
vendor-advisoryx_refsource_REDHAT

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
Low
Integrity:
High
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.