Skip to main content

Keylime EUVDEUVD-2026-27657

| CVE-2026-6420 MEDIUM
Use of Predictable Algorithm in Random Number Generator (CWE-1241)
6.3
CVSS 3.1 · Vendor: redhat
Share

Severity by source

Vendor (redhat) PRIMARY
6.3 MEDIUM
AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
SUSE
MEDIUM
qualitative
Red Hat
6.3 MEDIUM
qualitative

Primary rating from Vendor (redhat).

CVSS VectorVendor: redhat

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
Low

Lifecycle Timeline

1
Analysis Generated
May 06, 2026 - 11:30 vuln.today

DescriptionCVE.org

A flaw was found in Keylime. An attacker with root access on an enrolled monitored machine, where the Keylime agent runs, can exploit a vulnerability in the Keylime verifier. The verifier uses a hardcoded challenge nonce for Trusted Platform Module (TPM) quote attestation instead of a cryptographically random value. This allows the attacker to stockpile valid TPM quotes and replay them to evade detection after compromising the system. This issue affects only the push model deployment.

AnalysisAI

Keylime verifier uses a hardcoded challenge nonce instead of cryptographically random values for TPM quote attestation, allowing local attackers with root access on enrolled machines to capture valid quotes and replay them to bypass detection after system compromise. The vulnerability affects only push-model deployments and requires root privileges on the monitored endpoint; exploitation enables information disclosure and system integrity evasion with CVSS 6.3 severity.

Technical ContextAI

Keylime is a remote attestation framework that uses Trusted Platform Module (TPM) quotes to verify the integrity and trustworthiness of systems. In the push model deployment, the Keylime agent running on an enrolled machine sends attestation data to a central verifier. The vulnerability stems from CWE-1241 (Improper Handling of Insufficient Entropy in a Cryptographic Context) - the verifier generates TPM challenge nonces using a hardcoded value rather than a cryptographically secure random generator. An attacker with root privileges on the monitored system can intercept or observe the attestation flow, capture valid TPM quote responses signed by the TPM for a specific nonce, and later replay these pre-computed quotes to the verifier even after the system has been compromised. Since the nonce is static, the signature validation will succeed, allowing the attacker to maintain the illusion of system integrity.

RemediationAI

Primary mitigation is to apply a patch that replaces the hardcoded nonce with a cryptographically random value generated for each attestation request. Contact Red Hat for patched RHEL 9 and RHEL 10 packages via https://access.redhat.com/security/cve/CVE-2026-6420. Until patches are applied, apply defense-in-depth: (1) Limit root-level access on enrolled monitored machines using least-privilege principles and SELinux policies - this directly constrains the attack precondition. (2) Monitor Keylime verifier logs for quote validation failures or unusual attestation patterns that may indicate replay attempts. (3) For push-model deployments, implement additional out-of-band integrity checks independent of Keylime (e.g., kernel log inspection, intrusion detection on monitored endpoints) to detect post-compromise tampering. (4) Consider temporarily switching to pull-model deployments if operationally feasible, since the vulnerability is specific to push mode. Note that workarounds do not eliminate the underlying weakness; patching is essential for long-term security.

CVE-2026-4631 CRITICAL POC
9.8 Apr 07

Remote code execution in Cockpit's web interface allows unauthenticated attackers to execute arbitrary commands on the h

CVE-2026-4480 CRITICAL POC
9.0 May 26

Remote code execution in Samba's printing subsystem allows remote attackers to inject arbitrary shell commands via craft

CVE-2026-14544 CRITICAL
9.8 Jul 03

Remote code execution and privilege escalation in HPLIP (HP Linux Imaging and Printing) affects the hpcups print filter

CVE-2026-28369 CRITICAL
9.1 Mar 27

HTTP request smuggling in Undertow (the embedded web server underpinning JBoss EAP, Red Hat Data Grid, and Apache Camel

CVE-2026-28368 CRITICAL
9.1 Mar 27

HTTP request smuggling in Red Hat Undertow allows remote unauthenticated attackers to bypass front-end security controls

CVE-2026-33845 CRITICAL
9.1 Apr 30

Out-of-bounds read in the GnuTLS DTLS handshake reassembly logic lets remote unauthenticated attackers trigger an intege

CVE-2026-28367 CRITICAL
9.1 Mar 27

HTTP request smuggling in Undertow allows remote unauthenticated attackers to send `\r\r\r` as a header block terminator

CVE-2026-11610 HIGH
8.8 Jul 07

Denial of service in Red Hat / 389 Directory Server (389-ds-base, versions since ~1.3.2/2013) allows an authenticated LD

CVE-2026-14474 HIGH
8.8 Jul 07

Local-to-domain-wide root privilege escalation in SSSD's LDAP sudo provider allows an authenticated LDAP directory user

CVE-2026-52720 HIGH
8.8 Jun 15

Heap buffer overflow in GStreamer's librfb (RFB/VNC client) allows a malicious VNC server to corrupt heap memory on a co

CVE-2026-5674 HIGH
8.8 Jul 16

Sandbox escape in PipeWire's PulseAudio compatibility layer lets a low-privileged process inside a confined environment

CVE-2026-5260 HIGH
8.2 May 26

Information disclosure and denial of service in GnuTLS (libgnutls) let a remote, unauthenticated attacker trigger a heap

Vendor StatusVendor

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise Module for Basesystem 15 SP7 Fixed
SUSE Linux Enterprise Server 15 SP7 Fixed
SUSE Linux Enterprise Server 16.0 Fixed

Share

EUVD-2026-27657 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy