Description

A flaw was found in kubevirt. A user within a virtual machine (VM), if the guest agent is active, can exploit this by causing the agent to report an excessive number of network interfaces. This action can overwhelm the system's ability to store VM configuration updates, effectively blocking changes to the Virtual Machine Instance (VMI). This allows the VM user to restrict the VM administrator's ability to manage the VM, leading to a denial of service for administrative operations.

INFO

Published Date :

2026-01-26T19:36:43.721Z

Last Modified :

2026-01-26T20:59:41.777Z

Source :

redhat
AFFECTED PRODUCTS

The following products are affected by CVE-2025-14525 vulnerability.

Vendors Products
Redhat
  • Container Native Virtualization
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-14525.

URL Resource
https://access.redhat.com/security/cve/CVE-2025-14525 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=2421360 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-14525 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-14525 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact