Vulnerability-Lookup

CVE-2025-12548 (GCVE-0-2025-12548)

Vulnerability from cvelistv5 – Published: 2026-01-13 15:35 – Updated: 2026-01-13 15:51

Title

Github.com/che-incubator/che-code: eclipse che — unauthenticated rce and secret exfiltration via tcp/3333

Summary

A flaw was found in Eclipse Che che-machine-exec. This vulnerability allows unauthenticated remote arbitrary command execution and secret exfiltration (SSH keys, tokens, etc.) from other users' Developer Workspace containers, via an unauthenticated JSON-RPC / websocket API exposed on TCP port 3333.

Severity ?

9 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

CWE

CWE-306 - Missing Authentication for Critical Function

Assigner

redhat

References

URL

RHSA-2025:22623

Vulnerability from csaf_redhat - Published: 2025-12-02 15:28 - Updated: 2025-12-03 00:56

Summary

Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.24.1 Release.

Notes

Topic

Red Hat OpenShift Dev Spaces 3.24.1 has been released.

Details

This release addresses CVE-2025-12548 'Eclipse Che — unauthenticated RCE and secret exfiltration via TCP/3333'.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Dev Spaces 3.24.1 has been released.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "This release addresses CVE-2025-12548 \u0027Eclipse Che \u2014 unauthenticated RCE and secret exfiltration via TCP/3333\u0027.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:22623",
        "url": "https://access.redhat.com/errata/RHSA-2025:22623"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.24/html/administration_guide/installing-devspaces",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.24/html/administration_guide/installing-devspaces"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-12548",
        "url": "https://access.redhat.com/security/cve/CVE-2025-12548"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_22623.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.24.1 Release.",
    "tracking": {
      "current_release_date": "2025-12-03T00:56:55+00:00",
      "generator": {
        "date": "2025-12-03T00:56:55+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.13"
        }
      },
      "id": "RHSA-2025:22623",
      "initial_release_date": "2025-12-02T15:28:44+00:00",
      "revision_history": [
        {
          "date": "2025-12-02T15:28:44+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-02T15:28:54+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-03T00:56:55+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
                  "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift_devspaces:3.24::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Dev Spaces (RHOSDS)"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:ced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:ced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f_amd64",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:ced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3Aced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.24.1-1763547630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391_amd64",
                  "product_id": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-operator-bundle@sha256%3A69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.24.1-1763584739"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50_s390x",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.24.1-1763547630"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.24.1-1763547630"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e_arm64",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.24.1-1763547630"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:ced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:ced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:ced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.24",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Richard Leach"
          ],
          "organization": "LME"
        }
      ],
      "cve": "CVE-2025-12548",
      "cwe": {
        "id": "CWE-306",
        "name": "Missing Authentication for Critical Function"
      },
      "discovery_date": "2025-10-31T13:31:49.219000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2408850"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "No description is available for this CVE.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/che-incubator/che-code: Eclipse Che \u2014 unauthenticated RCE and secret exfiltration via TCP/3333",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:ced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-12548"
        },
        {
          "category": "external",
          "summary": "RHBZ#2408850",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408850"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-12548",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-12548"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12548",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12548"
        }
      ],
      "release_date": "2025-12-02T07:07:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-02T15:28:44+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:ced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:22623"
        },
        {
          "category": "workaround",
          "details": "Apply the security best practices from the Red Hat OpenShift Dev Spaces Administration Guide:\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_dev_spaces/3.24/html/administration_guide/security-best-practices",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:ced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.0,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:18e08f6cf87349707efe99e95b1029ff084f0824ab16515aac98302dda906eea_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:55205f8b22e78021ebb4beff25c4d250a359629cf96bea4afb5b633f124d6d50_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:9135e1c02a4f67bbd80fa6755cab3096aa5ecefabdc9af39c700f52ca24d2c6e_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/code-rhel9@sha256:ced0e45c01cb5f473deb4fb137249b743b907d27172fbabd223024c4000ba56f_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.24:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:69b9d5c8a2a342b223e21d7d40b179fde917e254193c709c34f9a11c24733391_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/che-incubator/che-code: Eclipse Che \u2014 unauthenticated RCE and secret exfiltration via TCP/3333"
    }
  ]
}

RHSA-2025:22620

Vulnerability from csaf_redhat - Published: 2025-12-02 15:22 - Updated: 2025-12-03 00:56

Summary

Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.22.1 Release.

Notes

Topic

Red Hat OpenShift Dev Spaces 3.22.1 has been released.

Details

This release addresses CVE-2025-12548 'Eclipse Che — unauthenticated RCE and secret exfiltration via TCP/3333'.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Dev Spaces 3.22.1 has been released.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "This release addresses CVE-2025-12548 \u0027Eclipse Che \u2014 unauthenticated RCE and secret exfiltration via TCP/3333\u0027.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:22620",
        "url": "https://access.redhat.com/errata/RHSA-2025:22620"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.22/html/administration_guide/installing-devspaces",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.22/html/administration_guide/installing-devspaces"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-12548",
        "url": "https://access.redhat.com/security/cve/CVE-2025-12548"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_22620.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.22.1 Release.",
    "tracking": {
      "current_release_date": "2025-12-03T00:56:52+00:00",
      "generator": {
        "date": "2025-12-03T00:56:52+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.13"
        }
      },
      "id": "RHSA-2025:22620",
      "initial_release_date": "2025-12-02T15:22:33+00:00",
      "revision_history": [
        {
          "date": "2025-12-02T15:22:33+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-02T15:22:36+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-03T00:56:52+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22",
                  "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift_devspaces:3.22::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Dev Spaces (RHOSDS)"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15_amd64",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3Ae3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.22.1-1763525702"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596_amd64",
                  "product_id": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-operator-bundle@sha256%3A5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.22.1-1763584491"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36_s390x",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3Ae617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.22.1-1763525702"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.22.1-1763525702"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c_arm64",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.22.1-1763525702"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.22",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.22",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.22",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.22",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.22",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Richard Leach"
          ],
          "organization": "LME"
        }
      ],
      "cve": "CVE-2025-12548",
      "cwe": {
        "id": "CWE-306",
        "name": "Missing Authentication for Critical Function"
      },
      "discovery_date": "2025-10-31T13:31:49.219000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2408850"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "No description is available for this CVE.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/che-incubator/che-code: Eclipse Che \u2014 unauthenticated RCE and secret exfiltration via TCP/3333",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36_s390x"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-12548"
        },
        {
          "category": "external",
          "summary": "RHBZ#2408850",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408850"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-12548",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-12548"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12548",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12548"
        }
      ],
      "release_date": "2025-12-02T07:07:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-02T15:22:33+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:22620"
        },
        {
          "category": "workaround",
          "details": "Apply the security best practices from the Red Hat OpenShift Dev Spaces Administration Guide:\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_dev_spaces/3.24/html/administration_guide/security-best-practices",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.0,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.22:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/che-incubator/che-code: Eclipse Che \u2014 unauthenticated RCE and secret exfiltration via TCP/3333"
    }
  ]
}

RHSA-2025:22652

Vulnerability from csaf_redhat - Published: 2025-12-02 21:45 - Updated: 2025-12-03 00:56

Summary

Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.23.1 Release.

Notes

Topic

Red Hat OpenShift Dev Spaces 3.23.1 has been released.

Details

This release addresses CVE-2025-12548 'Eclipse Che — unauthenticated RCE and secret exfiltration via TCP/3333'.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Dev Spaces 3.23.1 has been released.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "This release addresses CVE-2025-12548 \u0027Eclipse Che \u2014 unauthenticated RCE and secret exfiltration via TCP/3333\u0027.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:22652",
        "url": "https://access.redhat.com/errata/RHSA-2025:22652"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.23/html/administration_guide/installing-devspaces",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.23/html/administration_guide/installing-devspaces"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-12548",
        "url": "https://access.redhat.com/security/cve/CVE-2025-12548"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_22652.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.23.1 Release.",
    "tracking": {
      "current_release_date": "2025-12-03T00:56:42+00:00",
      "generator": {
        "date": "2025-12-03T00:56:42+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.13"
        }
      },
      "id": "RHSA-2025:22652",
      "initial_release_date": "2025-12-02T21:45:24+00:00",
      "revision_history": [
        {
          "date": "2025-12-02T21:45:24+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-02T21:45:26+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-03T00:56:42+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
                  "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift_devspaces:3.23::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Dev Spaces (RHOSDS)"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3_s390x",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23.1-1763508770"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23.1-1763508770"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50_arm64",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23.1-1763508770"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25_amd64",
                  "product_id": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-operator-bundle@sha256%3A48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23.1-1763584215"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:a6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:a6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a_amd64",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:a6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3Aa6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23.1-1763508770"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:a6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:a6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:a6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Richard Leach"
          ],
          "organization": "LME"
        }
      ],
      "cve": "CVE-2025-12548",
      "cwe": {
        "id": "CWE-306",
        "name": "Missing Authentication for Critical Function"
      },
      "discovery_date": "2025-10-31T13:31:49.219000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2408850"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "No description is available for this CVE.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/che-incubator/che-code: Eclipse Che \u2014 unauthenticated RCE and secret exfiltration via TCP/3333",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:a6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-12548"
        },
        {
          "category": "external",
          "summary": "RHBZ#2408850",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408850"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-12548",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-12548"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12548",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12548"
        }
      ],
      "release_date": "2025-12-02T07:07:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-02T21:45:24+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:a6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:22652"
        },
        {
          "category": "workaround",
          "details": "Apply the security best practices from the Red Hat OpenShift Dev Spaces Administration Guide:\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_dev_spaces/3.24/html/administration_guide/security-best-practices",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:a6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.0,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:4b9159902333a82353bf91823c092e9e2508b17b92e8c6fe0295b5a6609f25f3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:530cc2d4545285c5049faa1d379d57c1f0b00f34ec962fae78778893a7fdab50_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:83bdc106e7049b40977f8407a1b305be91afdd555a08ab097e448205c9f24eac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:a6fe7e233fa23e1fff9c74c5d4cbe800534561131b5be59533e88ede24452e3a_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:48c3048fafcdcf5d50fb5a5760e21b9fe062ec791c6ca9f288a9bcc556677f25_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/che-incubator/che-code: Eclipse Che \u2014 unauthenticated RCE and secret exfiltration via TCP/3333"
    }
  ]
}

GHSA-64F4-P4M8-4J89

Vulnerability from github – Published: 2026-01-13 18:31 – Updated: 2026-01-13 18:31

Details

Severity ?

9.0 (Critical)


                  
                    CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-12548"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-306"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-01-13T16:15:55Z",
    "severity": "CRITICAL"
  },
  "details": "A flaw was found in Eclipse Che che-machine-exec. This vulnerability allows unauthenticated remote arbitrary command execution and secret exfiltration (SSH keys, tokens, etc.) from other users\u0027 Developer Workspace containers, via an unauthenticated JSON-RPC / websocket API exposed on TCP port 3333.",
  "id": "GHSA-64f4-p4m8-4j89",
  "modified": "2026-01-13T18:31:03Z",
  "published": "2026-01-13T18:31:03Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12548"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2025:22620"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2025:22623"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2025:22652"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2025-12548"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408850"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2025-12548

Vulnerability from fkie_nvd - Published: 2026-01-13 16:15 - Updated: 2026-01-13 16:15

Severity ?

9.0 (Critical) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Summary

References

	URL	Tags
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2025:22620
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2025:22623
	secalert@redhat.com	https://access.redhat.com/errata/RHSA-2025:22652
	secalert@redhat.com	https://access.redhat.com/security/cve/CVE-2025-12548
	secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2408850

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A flaw was found in Eclipse Che che-machine-exec. This vulnerability allows unauthenticated remote arbitrary command execution and secret exfiltration (SSH keys, tokens, etc.) from other users\u0027 Developer Workspace containers, via an unauthenticated JSON-RPC / websocket API exposed on TCP port 3333."
    }
  ],
  "id": "CVE-2025-12548",
  "lastModified": "2026-01-13T16:15:55.527",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.0,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.3,
        "impactScore": 6.0,
        "source": "secalert@redhat.com",
        "type": "Primary"
      }
    ]
  },
  "published": "2026-01-13T16:15:55.527",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2025:22620"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2025:22623"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2025:22652"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/security/cve/CVE-2025-12548"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408850"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Received",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-306"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Primary"
    }
  ]
}

WID-SEC-W-2025-2725

Vulnerability from csaf_certbund - Published: 2025-12-02 23:00 - Updated: 2025-12-02 23:00

Summary

Red Hat OpenShift Dev Spaces: Schwachstelle ermöglicht Codeausführung

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.

Angriff

Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Red Hat OpenShift Dev Spaces ausnutzen, um beliebigen Programmcode auszuführen.

Betroffene Betriebssysteme

- Sonstiges - UNIX

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Red Hat OpenShift Dev Spaces ausnutzen, um beliebigen Programmcode auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2725 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2725.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2725 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2725"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory vom 2025-12-02",
        "url": "https://access.redhat.com/errata/RHSA-2025:22620"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory vom 2025-12-02",
        "url": "https://access.redhat.com/errata/RHSA-2025:22623"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory vom 2025-12-02",
        "url": "https://access.redhat.com/errata/RHSA-2025:22652"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat OpenShift Dev Spaces: Schwachstelle erm\u00f6glicht Codeausf\u00fchrung",
    "tracking": {
      "current_release_date": "2025-12-02T23:00:00.000+00:00",
      "generator": {
        "date": "2025-12-03T10:42:10.874+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2025-2725",
      "initial_release_date": "2025-12-02T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-12-02T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Dev Spaces \u003c3.22.1",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces \u003c3.22.1",
                  "product_id": "T049036"
                }
              },
              {
                "category": "product_version",
                "name": "Dev Spaces 3.22.1",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces 3.22.1",
                  "product_id": "T049036-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:dev_spaces__3.22.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Dev Spaces \u003c3.24.1",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces \u003c3.24.1",
                  "product_id": "T049037"
                }
              },
              {
                "category": "product_version",
                "name": "Dev Spaces 3.24.1",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces 3.24.1",
                  "product_id": "T049037-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:dev_spaces__3.24.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Dev Spaces \u003c3.23.1",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces \u003c3.23.1",
                  "product_id": "T049038"
                }
              },
              {
                "category": "product_version",
                "name": "Dev Spaces 3.23.1",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces 3.23.1",
                  "product_id": "T049038-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:dev_spaces__3.23.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenShift"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-12548",
      "product_status": {
        "known_affected": [
          "T049037",
          "T049036",
          "T049038"
        ]
      },
      "release_date": "2025-12-02T23:00:00.000+00:00",
      "title": "CVE-2025-12548"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-12548 (GCVE-0-2025-12548)

RHSA-2025:22623

RHSA-2025:22620

RHSA-2025:22652

GHSA-64F4-P4M8-4J89

FKIE_CVE-2025-12548

WID-SEC-W-2025-2725

Tags

Sightings

Nomenclature