CVE-2025-8904 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Amazon EMR Secret Agent creates a keytab file containing Kerberos credentials. This file is stored in the /tmp/ directory. A user with access to this directory…
Critical CVSS: 9.0

CVE-2025-8904

Amazon EMR Secret Agent creates a keytab file containing Kerberos credentials. This file is stored in the /tmp/ directory. A user with access to this directory and another account can potentially decrypt the keys and escalate to higher privileges.



Users are advised to upgrade to Amazon EMR version 7.5 or higher. For Amazon EMR releases between 6.10 and 7.4, we strongly recommend that you run the bootstrap script and RPM files with the fix provided in the location below.
Vendor
-
Product
-
CWE
CWE-257
Yayın Tarihi
2025-08-13 18:15:33
Güncelleme
2025-10-14 18:15:37
Source Identifier
ff89ba41-3aa1-4d27-914a-91399e9639e5
KEV Date Added
-

Kategoriler

CWE-257 CRITICAL 2025

Referanslar

https://aws.amazon.com/security/security-bulletins/AWS-2025-017/ https://docs.aws.amazon.com/emr/latest/ReleaseGuide/emr-750-release.html https://github.com/advisories/GHSA-hf8h-76fm-735v