Kata Containers coco-tdx malicious host can circumvent initdata verification

6.9 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Description

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines (VMs) that perform like containers. In Kata Containers versions from 3.20.0 and before, a malicious host can circumvent initdata verification. On TDX systems running confidential guests, a malicious host can selectively fail IO operations to skip initdata verification. This allows an attacker to launch arbitrary workloads while being able to attest successfully to Trustee impersonating any benign workload. This issue has been patched in Kata Containers version 3.21.0.

Basic Information

ID CVE-2025-58354

Source GitHub_M

Published Sep 23, 2025 at 21:08

Affected Product

Vendor kata-containers

Product kata-containers

Version < 3.21.0

Affected Versions kata-containers kata-containers < 3.21.0

CWE Classification

CWE-754

References

{
    "lastseen": "",
    "description": "Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines (VMs) that perform like containers. In Kata Containers versions from 3.20.0 and before, a malicious host can circumvent initdata verification. On TDX systems running confidential guests, a malicious host can selectively fail IO operations to skip initdata verification. This allows an attacker to launch arbitrary workloads while being able to attest successfully to Trustee impersonating any benign workload. This issue has been patched in Kata Containers version 3.21.0.",
    "published": "2025-09-23T21:08:47.147Z",
    "modified": "2025-09-23T21:08:47.147Z",
    "type": "cve",
    "title": "Kata Containers coco-tdx malicious host can circumvent initdata verification",
    "source": "GitHub_M",
    "references": "https://github.com/kata-containers/kata-containers/security/advisories/GHSA-989w-4xr2-ww9m\nhttps://github.com/kata-containers/kata-containers/commit/3e67f92e34be974e792c153add76e4e4baac9de0",
    "id": "CVE-2025-58354",
    "bulletinFamily": "",
    "cwe": [
        "CWE-754"
    ],
    "cvelist": null,
    "sourceData": "kata-containers kata-containers < 3.21.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.9,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "kata-containers",
    "version": "< 3.21.0",
    "vendor": "kata-containers",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Kata Containers coco-tdx malicious host can circumvent initdata verification_CVE-2025-58354