CVE-2025-2312

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-2312
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-2312.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-2312
Downstream
Related
Published
2025-03-25T18:15:34Z
Modified
2025-08-09T20:01:27Z
Summary
[none]
Details

A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an upcall to the wrong namespace in containerized environments. This issue may lead to disclosing sensitive data from the host's Kerberos credentials cache.

References

Affected packages