Alpine: multiple kea packages: security update to 2.6.3-r0

high Tenable Cloud Security Plugin ID 427825

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

- Kea configuration and API directives can be used to load a malicious hook library. Many common
configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control
sockets in insecure paths. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and
2.7.0 through 2.7.8. (CVE-2025-32801)

- Kea configuration and API directives can be used to overwrite arbitrary files, subject to permissions
granted to Kea. Many common configurations run Kea as root, leave the API entry points unsecured by
default, and/or place the control sockets in insecure paths. This issue affects Kea versions 2.4.0 through
2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8. (CVE-2025-32802)

- In some cases, Kea log files or lease files may be world-readable. This issue affects Kea versions 2.4.0
through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8. (CVE-2025-32803)

See Also

https://security.alpinelinux.org/vuln/CVE-2025-32801

https://security.alpinelinux.org/vuln/CVE-2025-32802

https://security.alpinelinux.org/vuln/CVE-2025-32803

Plugin Details

Severity: High

ID: 427825

Version: Revision 1.13

Type: Local

Published: 5/31/2025

Updated: 7/2/2026

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Medium

Score: 6.9

Percentile: 97.04

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2025-32801

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 5/28/2025

Reference Information

CVE: CVE-2025-32801, CVE-2025-32802, CVE-2025-32803