CVE-2025-13609HIGH 8.2EPSS p28.2%

CVE-2025-13609CVE-2025-13609

Description

A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new agent using a different Trusted Platform Module (TPM) device but claiming an existing agent's unique identifier (UUID). This action overwrites the legitimate agent's identity, enabling the attacker to impersonate the compromised agent and potentially bypass security controls.

Scoring

CVSS 3.18.2 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:L
EPSS0.36% probability of exploitation · percentile 28.2% · 2026-06-19T12:03:05Z
Published2025-11-24
Last modified2026-04-15

Underlying weaknesses· 1

CWE-694

References

  1. https://access.redhat.com/errata/RHSA-2025:23201
  2. https://access.redhat.com/errata/RHSA-2025:23210
  3. https://access.redhat.com/errata/RHSA-2025:23628
  4. https://access.redhat.com/errata/RHSA-2025:23735
  5. https://access.redhat.com/errata/RHSA-2025:23852
  6. https://access.redhat.com/errata/RHSA-2026:0429
  7. https://access.redhat.com/security/cve/CVE-2025-13609
  8. https://bugzilla.redhat.com/show_bug.cgi?id=2416761

1

TypeTargetConfidenceTier
WeaknessUse of Multiple Resources with Duplicate Identifiercwe-6940%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-1709
CVE
CVE-2025-6573
CVE
CVE-2025-26850
CVE
CVE-2025-59612
CVE
CVE-2025-49723
CVE
CVE-2025-53118
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.