CVE 9.4 CRITICAL

Keylime: keylime: authentication bypass allows unauthorized administrative operations due to missing client-side tls authentication_CVE-2026-1709

February 6, 2026 invoker category_cve

9.4 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H

Description

A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security (TLS) authentication. This authentication bypass vulnerability allows unauthenticated clients with network access to perform administrative operations, including listing agents, retrieving public Trusted Platform Module (TPM) data, and deleting agents, by connecting without presenting a client certificate.

AI Analysis

Authentication bypass vulnerability in Keylime registrar due to missing client-side TLS authentication

Basic Information

ID CVE-2026-1709

Source redhat

Published Feb 6, 2026 at 19:13

Affected Product

Vendor Red Hat

Product Keylime

Version 7.12.0

CWE Classification

CWE-322

AI Assessment

AI Score 9.4 / 10

AI Severity Critical

Vendor Red Hat

Product Keylime

Version 7.12.0

References

{
    "lastseen": "",
    "description": "A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security (TLS) authentication. This authentication bypass vulnerability allows unauthenticated clients with network access to perform administrative operations, including listing agents, retrieving public Trusted Platform Module (TPM) data, and deleting agents, by connecting without presenting a client certificate.",
    "published": "2026-02-06T19:13:27.695Z",
    "modified": "2026-02-06T19:13:27.695Z",
    "type": "cve",
    "title": "Keylime: keylime: authentication bypass allows unauthorized administrative operations due to missing client-side tls authentication",
    "source": "redhat",
    "references": "https://access.redhat.com/security/cve/CVE-2026-1709\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2435514",
    "id": "CVE-2026-1709",
    "bulletinFamily": "",
    "cwe": [
        "CWE-322"
    ],
    "cvelist": null,
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 9.4,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Keylime",
    "version": "7.12.0",
    "vendor": "Red Hat",
    "ai_description": "Authentication bypass vulnerability in Keylime registrar due to missing client-side TLS authentication",
    "ai_severity": "Critical",
    "ai_vendor": "Red Hat",
    "ai_product": "Keylime",
    "ai_version": "7.12.0",
    "ai_score": 9.4
}

💭 Join the Security Discussion ❌ Cancel Reply