Identity Impersonation Vulnerability in Keylime by Red Hat
CVE-2025-13609

8.2HIGH

Key Information:

Vendor

Red Hat
Status
Red Hat Enterprise Linux 10
Red Hat Enterprise Linux 9
Vendor
CVE Published:
24 November 2025

What is CVE-2025-13609?

A vulnerability exists in Keylime that allows an attacker to exploit the registration process of new agents. By utilizing a different Trusted Platform Module (TPM) device, the attacker can claim an existing agent's unique identifier (UUID). This impersonation overwrites the genuine agent’s identity, potentially allowing the attacker to bypass established security measures and gain unauthorized access.

References

https://access.redhat.com/security/cve/CVE-2025-13609
vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2416761
issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
Low
Integrity:
High
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-13609 : Identity Impersonation Vulnerability in Keylime by Red Hat