Vulnerability in Red Hat Enterprise Linux 10
CVE-2025-4404
A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the `krbCanonicalName` for the admin account by default, allowing users to create services w…
EPSS: 0.018 (76.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 9.1 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H.
Affected products
- Red Hat Enterprise Linux 10 — versions 0:4.12.2-15.el10_0.1
- Red Hat Enterprise Linux 6
- Red Hat Enterprise Linux 7 Extended Lifecycle Support — versions 0:4.6.8-5.el7_9.18
- Red Hat Enterprise Linux 8 — versions 8100020250603150652.143e9e98, 8100020250603134209.823393f5
- Red Hat Enterprise Linux 8.2 Advanced Update Support — versions 8020020250609031831.50ea30f9, 8020020250609030144.792f4060
- Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support — versions 8040020250609101903.f153676a, 8040020250609095221.5b01ab7e
- Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support — versions 8060020250606060927.c1533a64, 8060020250606060504.ada582f1
- Red Hat Enterprise Linux 8.6 Telecommunications Update Service — versions 8060020250606060927.c1533a64, 8060020250606060504.ada582f1
- Red Hat Enterprise Linux 8.6 Update Services For Sap Solutions — versions 8060020250606060927.c1533a64, 8060020250606060504.ada582f1
- Red Hat Enterprise Linux 8.8 Telecommunications Update Service — versions 8080020250604195510.e581a9e4, 8080020250604202433.b0a6ceea
Weakness classification (CWE)
Public proof-of-concept exploits
References
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
Frequently asked questions
- What is CVE-2025-4404?
- CVE-2025-4404 is a critical-severity vulnerability in Red Hat Enterprise Linux 10, classified under CWE-1220. CVSS score: 9.1/10. Published 2025-06-17.
- How severe is CVE-2025-4404?
- Critical severity. CVSS v3 base score is 9.1 out of 10.
- Is CVE-2025-4404 known to be exploited?
- 7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.