CVE-2025-64435
CVE-2025-64435 is a medium-severity vulnerability in Kubevirt with a CVSS 3.x base score of 5.3. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-703.
Key facts
- Severity: Medium (CVSS 3.x base score 5.3)
- EPSS exploit prediction: 0% (27th percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2025-38215
- Weakness: CWE-703
- Affected product: Kubevirt
- Published:
- Last modified:
Description
KubeVirt is a virtual machine management add-on for Kubernetes. Prior to 1.7.0-beta.0, a logic flaw in the virt-controller allows an attacker to disrupt the control over a running VMI by creating a pod with the same labels as the legitimate virt-launcher pod associated with the VMI. This can mislead the virt-controller into associating the fake pod with the VMI, resulting in incorrect status updates and potentially causing a DoS (Denial-of-Service). This vulnerability is fixed in 1.7.0-beta.0.
Frequently asked questions
- What is CVE-2025-64435?
- KubeVirt is a virtual machine management add-on for Kubernetes. Prior to 1.7.0-beta.0, a logic flaw in the virt-controller allows an attacker to disrupt the control over a running VMI by creating a pod with the same labels as the legitimate virt-launcher pod associated with the VMI. This can mislead the virt-controller into associating the fake pod with the VMI, resulting in incorrect status updates and potentially causing a DoS (Denial-of-Service). This vulnerability is fixed in 1.7.0-beta.0.
- How severe is CVE-2025-64435?
- CVE-2025-64435 has a CVSS 3.x base score of 5.3, rated medium severity. It is exploitable over network with high attack complexity, requires low privileges and no user interaction. Impact on confidentiality is none, integrity none, and availability high.
- Is CVE-2025-64435 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (27th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2025-64435?
- CVE-2025-64435 primarily affects Kubevirt. In total, 2 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2025-64435?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- Does CVE-2025-64435 have an EU (EUVD) identifier?
- Yes. CVE-2025-64435 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2025-38215.
- When was CVE-2025-64435 published?
- CVE-2025-64435 was published on 2025-11-07 and last updated on 2026-06-17.
References
- https://github.com/kubevirt/kubevirt/commit/9a6f4a3a707992038ef705da4cb3bba8c89d36ba
- https://github.com/kubevirt/kubevirt/security/advisories/GHSA-9m94-w2vq-hcf9
Affected products (2)
- cpe:2.3:a:kubevirt:kubevirt:*:*:*:*:*:kubernetes:*:*
- cpe:2.3:a:kubevirt:kubevirt:1.7.0:alpha0:*:*:*:kubernetes:*:*
More vulnerabilities in Kubevirt
- CVE-2020-14316 — Critical (CVSS 9.9): A flaw was found in kubevirt 0.29 and earlier. Virtual Machine Instances (VMIs) can be used to gain access to the…
- CVE-2022-1798 — High (CVSS 8.7): A path traversal vulnerability in KubeVirt versions up to 0.56 (and 0.55.1) on all platforms allows a user able to…
- CVE-2026-13325 — High (CVSS 8.5): A flaw was found in KubeVirt's migration proxy. When spec.configuration.migrations.disableTLS is set to true on the…
- CVE-2023-26484 — High (CVSS 8.2): KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has…
- CVE-2025-64324 — High (CVSS 7.7): KubeVirt is a virtual machine management add-on for Kubernetes. The `hostDisk` feature in KubeVirt allows mounting a…
- CVE-2026-13201 — High (CVSS 7.3): A flaw was found in KubeVirt's safepath package used by virt-handler. The OpenAtNoFollow function uses…
Other CWE-703 vulnerabilities
- CVE-2025-13026 — Critical (CVSS 9.8): Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in…
- CVE-2025-13023 — Critical (CVSS 9.8): Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in…
- CVE-2025-13022 — Critical (CVSS 9.8): Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and…
- CVE-2025-13021 — Critical (CVSS 9.8): Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and…
- CVE-2024-39815 — Critical (CVSS 9.1): Improper check or handling of exceptional conditions vulnerability affecting Vonets industrial wifi bridge relays…
- CVE-2023-45927 — Critical (CVSS 9.1): S-Lang 2.3.2 was discovered to contain an arithmetic exception via the function tt_sprintf().