Security Advisory

CVE-2025-2312

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-25 18:08:02

Last updated 2025-03-25 18:23:15

Assigner redhat-cnalr

State PUBLISHED

Description

A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an upcall to the wrong namespace in containerized environments. This issue may lead to disclosing sensitive data from the hosts Kerberos credentials cache.

← Browse all CVEs View on cve.org ↗