{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-12T21:20:03.016","vulnerabilities":[{"cve":{"id":"CVE-2025-2312","sourceIdentifier":"74b3a70d-cca6-4d34-9789-e83b222ae3be","published":"2025-03-25T18:15:34.987","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an upcall to the wrong namespace in containerized environments. This issue may lead to disclosing sensitive data from the host's Kerberos credentials cache."},{"lang":"es","value":"Se detectó una falla en cifs-utils. Al intentar obtener credenciales Kerberos, el programa cifs.upcall del paquete cifs-utils realiza una llamada ascendente al espacio de nombres incorrecto en entornos contenedorizados. Este problema puede provocar la divulgación de datos confidenciales de la caché de credenciales Kerberos del host."}],"metrics":{"cvssMetricV31":[{"source":"74b3a70d-cca6-4d34-9789-e83b222ae3be","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.4,"impactScore":4.0}]},"weaknesses":[{"source":"74b3a70d-cca6-4d34-9789-e83b222ae3be","type":"Secondary","description":[{"lang":"en","value":"CWE-488"}]}],"references":[{"url":"https://git.samba.org/?p=cifs-utils.git;a=commit;h=89b679228cc1be9739d54203d28289b03352c174","source":"74b3a70d-cca6-4d34-9789-e83b222ae3be"},{"url":"https://web.git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/fs/smb?id=db363b0a1d9e6b9dc556296f1b1007aeb496a8cf","source":"74b3a70d-cca6-4d34-9789-e83b222ae3be"}]}}]}