{"id":68016,"date":"2025-08-13T22:31:50","date_gmt":"2025-08-13T19:01:50","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-8904-amazon-emr-kerberos-keytab-file-disclosure\/"},"modified":"2025-08-13T22:31:50","modified_gmt":"2025-08-13T19:01:50","slug":"cve-2025-8904-amazon-emr-kerberos-keytab-file-disclosure","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-8904-amazon-emr-kerberos-keytab-file-disclosure\/","title":{"rendered":"CVE-2025-8904 &#8211; Amazon EMR Kerberos Keytab File Disclosure"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-8904<br \/>\n<br \/>\n<strong>Published : <\/strong> Aug. 13, 2025, 6:15 p.m. | 17\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>Amazon EMR Secret Agent creates a keytab file containing Kerberos credentials. This file is stored in the \/tmp\/ directory. A user with access to this directory and another account can potentially decrypt the keys and escalate to higher privileges. <\/p>\n<p>Users are advised to upgrade to Amazon EMR version 7.5 or higher. For Amazon EMR releases between 6.10 and 7.4, we strongly recommend that you run the bootstrap script and RPM files with the fix provided in the location below.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 0.0 | NA<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-8904 Published : Aug. 13, 2025, 6:15 p.m. | 17\u00a0minutes ago Description : Amazon EMR Secret Agent creates a keytab file containing Kerberos credentials. This file is stored in the \/tmp\/ directory. A user with access to this directory and another account can potentially decrypt the keys and escalate to higher privileges. &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-68016","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/68016","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=68016"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/68016\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=68016"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=68016"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=68016"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}