Description

If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request for a realm matching a DNS zone where they created SRV records pointing to arbitrary ports and hostnames (which may resolve to loopback or internal IP addresses). This vulnerability can be exploited to probe internal network topology and firewall rules, perform port scanning, and exfiltrate data. Deployments where the "use_dns" setting is explicitly set to false are not affected.

INFO

Published Date :

2025-11-12T16:35:27.877Z

Last Modified :

2025-12-19T14:44:01.471Z

Source :

redhat
AFFECTED PRODUCTS

The following products are affected by CVE-2025-59088 vulnerability.

Vendors Products
Redhat
  • Enterprise Linux
  • Enterprise Linux Eus
  • Rhel Aus
  • Rhel E4s
  • Rhel Els
  • Rhel Eus
  • Rhel Eus Long Life
  • Rhel Tus
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-59088.

URL Resource
https://access.redhat.com/errata/RHSA-2025:21138 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21139 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21140 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21141 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21142 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21448 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21748 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21806 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21818 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21819 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21820 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:21821 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:22982 cve-icon cve-icon
https://access.redhat.com/security/cve/CVE-2025-59088 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=2393955 cve-icon cve-icon
https://github.com/latchset/kdcproxy/pull/68 cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-59088 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-59088 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact