CVE-2025-59088
- ULN >
- Oracle Linux CVE repository >
- CVE-2025-59088
CVE Details
| Release Date: | 2025-11-12 | |
| Impact: | Important | What is this? |
Description
If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request for a realm matching a DNS zone where they created SRV records pointing to arbitrary ports and hostnames (which may resolve to loopback or internal IP addresses). This vulnerability can be exploited to probe internal network topology and firewall rules, perform port scanning, and exfiltrate data. Deployments where the "use_dns" setting is explicitly set to false are not affected.
See more information about CVE-2025-59088 from MITRE CVE dictionary and NIST NVD
NOTE: The following CVSS metrics and score provided are preliminary and subject to review.
CVSS v3 metrics
| Base Score: | 8.6 |
| Vector String: | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N |
| Version: | 3.1 |
| Attack Vector: | Network |
| Attack Complexity: | Low |
| Privileges Required: | None |
| User Interaction: | None |
| Scope: | Changed |
| Confidentiality Impact: | High |
| Integrity Impact: | None |
| Availability Impact: | None |
Errata information
| Platform | Errata | Release Date |
| Oracle Linux version 8 (bind-dyndb-ldap) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (custodia) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (ipa) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (ipa-healthcheck) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (opendnssec) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (python-jwcrypto) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (python-kdcproxy) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (python-qrcode) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (python-yubico) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (pyusb) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (slapi-nis) | ELSA-2025-21140 | 2025-11-13 |
| Oracle Linux version 8 (softhsm) | ELSA-2025-21140 | 2025-11-13 |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:
- Oracle customers - enter a support request
- Vulnerability scanning tools vendors and project maintainers - follow the standard ISV process
