CVE-2025-13402 in rnpinfo

Prediction

by VulDB Data Team • 12/03/2025

A flaw has been found in rnp up to 0.18.0. Affected is an unknown function of the component PKESK Session Key Handler. This manipulation causes missing encryption of sensitive data. The attack is only possible within the local network. Upgrading to version 0.18.1-1.el10_1 is able to address this issue. Upgrading the affected component is advised.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Moderation

accepted

Entry

VDB-333278

CPE

ready

CWE

CWE-311 (confirmed)

CVSS

2.6 (VulDB)

EPSS

0.00000

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-13402
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-13402
CVE Details	https://www.cvedetails.com/cve/CVE-2025-13402/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!