A flaw was found in nbdkit due to to improperly caching plaintext state across the STARTTLS encryption boundary. A MitM attacker could use this flaw to inject a plaintext NBD_OPT_STRUCTURED_REPLY before proxying everything else a client sends to the server, potentially leading the client to terminate the NBD session. The highest threat from this vulnerability is to system availability.

🗓️ 02 Oct 2025 06:11:11Reported by MicrosoftType

A flaw in a network block device tool lets a man in the middle inject a text reply across start TLS risking disruption.

Reporter	Title	Published	Views	Family All 68
Tenable Nessus	Alibaba Cloud Linux 3 : 0168: virt:rhel and virt-devel:rhel (ALINUX3-SA-2022:0168)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : virt:rhel and virt-devel:rhel (ALSA-2022:1759)	12 May 202200:00	–	nessus
Tenable Nessus	CentOS 8 : virt:rhel and virt-devel:rhel (CESA-2022:1759)	10 May 202200:00	–	nessus
Tenable Nessus	MiracleLinux 8 : virt:rhel (AXSA:2022-3568:01)	20 Jan 202600:00	–	nessus
Tenable Nessus	MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2022-3705:01)	20 Jan 202600:00	–	nessus
Tenable Nessus	Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-10.0)	29 Apr 202600:00	–	nessus
Tenable Nessus	Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-20230302.100173)	9 Sep 202400:00	–	nessus
Tenable Nessus	Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-20230302.101026)	9 Sep 202400:00	–	nessus
Tenable Nessus	Oracle Linux 8 : virt:ol / and / virt-devel:ol (ELSA-2022-1759)	18 May 202200:00	–	nessus
Tenable Nessus	Oracle Linux 8 : virt:kvm_utils2 (ELSA-2024-12605)	2 Sep 202400:00	–	nessus

Vulners

Node

02 Oct 2025 06:11Current

7High risk

Vulners AI Score7

CVSS 3.13.1

CVSS 23.5

EPSS0.00082