VIR Vulnerability Intelligence Relay

CVE-2025-8283

low
Published 2025-07-28 · Modified 2025-11-13
CVSS v3
3.7
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS v2
VIR risk
3.7

Description

Netavark Has Possible DNS Resolve Confusion

Predictions

Exploit likelihood
47%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2025-8283

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2025-8283.html

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — https://access.redhat.com/security/cve/CVE-2025-8283

OS impact
OSVersionStatusFixed in
suse slesaffected
debian debianbookwormfixed0
debian debianforkyfixed0
debian debiansidfixed0
debian debiantrixiefixed0
redhat rhel8.0affected
redhat rhel9.0affected
redhat rhel10.0affected

Package impact
EcosystemPackageVulnerableFixed
rust crates.ionetavark<1.15.11.15.1

Application impact
VendorProductVersionsFixed
redhatopenshift_container_platform4.0

References

CWEs

CWE-15

Verify integrity in audit chain (admin only). AS-IS.