CVE-2025-6032

Опубликовано: 24 июн. 2025

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 8.3

Описание

A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.

Релиз	Статус	Примечание
devel	needs-triage
jammy	DNE
noble	DNE
oracular	DNE
plucky	needs-triage
upstream	needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 8%

0.00034

Низкий

8.3 High

CVSS3

Связанные уязвимости

CVE-2025-6032

CVSS3: 8.3

redhat

28 дней назад

A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.

CVE-2025-6032

CVSS3: 8.3

nvd

28 дней назад

A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.

CVE-2025-6032

CVSS3: 8.3

debian

28 дней назад

A flaw was found in Podman. The podman machine init command fails to v ...

GHSA-65gg-3w2w-hr4h

CVSS3: 8.3

github

27 дней назад

Podman Improper Certificate Validation; machine missing TLS verification

ELSA-2025-10551

oracle-oval

14 дней назад

ELSA-2025-10551: container-tools:rhel8 security update (IMPORTANT)

EPSS

Процентиль: 8%

0.00034

Низкий

8.3 High

CVSS3

CVE-2025-6032

Описание

Пакет podman

Ссылки на источники

Связанные уязвимости