๐Ÿ” CVE Alert

CVE-2025-13609

HIGH 8.2

Keylime: keylime: registrar allows identity takeover via duplicate uuid registration

CVSS Score
8.2
EPSS Score
0.0%
EPSS Percentile
0th

A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new agent using a different Trusted Platform Module (TPM) device but claiming an existing agent's unique identifier (UUID). This action overwrites the legitimate agent's identity, enabling the attacker to impersonate the compromised agent and potentially bypass security controls.

CWE CWE-694
Vendor keylime project
Product keylime
Published Nov 24, 2025
Last Updated Mar 19, 2026
Stay Ahead of the Next One

Get instant alerts for keylime project keylime

Be the first to know when new high vulnerabilities affecting keylime project keylime are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
High
Availability
Low

Affected Versions

Keylime Project / keylime
0 < 7.14.0
Red Hat / Red Hat Enterprise Linux 10
All versions affected
Red Hat / Red Hat Enterprise Linux 10.0 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 9
All versions affected
Red Hat / Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions
All versions affected
Red Hat / Red Hat Enterprise Linux 9.4 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 9.6 Extended Update Support
All versions affected

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
access.redhat.com: https://access.redhat.com/errata/RHSA-2025:23201 access.redhat.com: https://access.redhat.com/errata/RHSA-2025:23210 access.redhat.com: https://access.redhat.com/errata/RHSA-2025:23628 access.redhat.com: https://access.redhat.com/errata/RHSA-2025:23735 access.redhat.com: https://access.redhat.com/errata/RHSA-2025:23852 access.redhat.com: https://access.redhat.com/errata/RHSA-2026:0429 access.redhat.com: https://access.redhat.com/security/cve/CVE-2025-13609 bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2416761 github.com: https://github.com/keylime/keylime/issues/1820