CVE-2025-13402 | rnp up to 0.18.0 PKESK Session Key missing encryption

A vulnerability was found in rnp up to 0.18.0. It has been rated as problematic. Affected is an unknown function of the component PKESK Session Key Handler. This manipulation causes missing encryption of sensitive data.

This vulnerability is tracked as CVE-2025-13402. The attack is only possible within the local network. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More