Vulnerability-Lookup

WID-SEC-W-2025-2563

Vulnerability from csaf_certbund - Published: 2025-11-11 23:00 - Updated: 2025-12-14 23:00

Summary

Microsoft Azure Linux: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Microsoft Azure Linux ist eine von Microsoft entwickelte Linux-Distribution, die für die Ausführung von Workloads in der Azure-Cloud optimiert ist. Windows ist ein Betriebssystem von Microsoft.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Microsoft Azure Linux und Microsoft Windows ausnutzen um erhöhte Privilegien zu erlangen, beliebigen Code auszuführen, die Authentifizierung zu umgehen, Spoofing-Angriffe durchzuführen, einen Denial-of-Service-Zustand zu verursachen oder andere, nicht näher spezifizierte Angriffe durchzuführen.

Betroffene Betriebssysteme: - Windows

CVE-2024-25621

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-10966

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-12863

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-12875

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-31133

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-40107

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-40109

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-52565

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-52881

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-60753

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-62220

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-64329

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-64432

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-64433

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-64434

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-64435

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-64436

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

CVE-2025-64437

Affected products

Known affected 15 products

Product	Identifier	Version
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0`	azl3 nghttp2 1.61.0-2 on 3.0
Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0`	azl3 kubevirt 1.5.0-5 on 3.0
Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0`	azl3 rust 1.86.0-9 on 3.0
Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0`	azl3 containerd2 2.0.0-14 on 3.0
Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0`	azl3 rust 1.75.0-21 on 3.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0`	azl3 curl 8.11.1-4 on 3.0
Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0`	azl3 kernel 6.6.104.2-4 on 3.0
Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0`	azl3 libarchive 3.7.7-3 on 3.0
Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0`	azl3 runc 1.3.3-1 on 3.0
Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0`	azl3 libxml2 2.11.5-7 on 3.0
Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0`	azl3 mysql 8.0.44-2 on 3.0
Microsoft Windows Subsystem for Linux GUI Microsoft / Windows	`cpe:/o:microsoft:windows:subsystem_for_linux_gui`	Subsystem for Linux GUI
Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0 Microsoft / Azure Linux	`cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0`	azl3 cmake 3.30.3-10 on 3.0

References

8 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://msrc.microsoft.com/update-guide/	external
https://lists.opensuse.org/archives/list/security…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Microsoft Azure Linux ist eine von Microsoft entwickelte Linux-Distribution, die f\u00fcr die Ausf\u00fchrung von Workloads in der Azure-Cloud optimiert ist.\r\nWindows ist ein Betriebssystem von Microsoft.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Microsoft Azure Linux und Microsoft Windows ausnutzen um erh\u00f6hte Privilegien zu erlangen, beliebigen Code auszuf\u00fchren, die Authentifizierung zu umgehen,  Spoofing-Angriffe durchzuf\u00fchren, einen Denial-of-Service-Zustand zu verursachen oder andere, nicht n\u00e4her spezifizierte Angriffe durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2563 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2563.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2563 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2563"
      },
      {
        "category": "external",
        "summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates",
        "url": "https://msrc.microsoft.com/update-guide/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4288-1 vom 2025-11-28",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2I3DAC5P7RIJP4M7YPNYJVIE4ZG7RSHV/"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2025-2F6CA95A74 vom 2025-12-13",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-2f6ca95a74"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2025-7C468696D2 vom 2025-12-13",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-7c468696d2"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2025-D39F46567C vom 2025-12-13",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-d39f46567c"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2025-2CA3289343 vom 2025-12-13",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-2ca3289343"
      }
    ],
    "source_lang": "en-US",
    "title": "Microsoft Azure Linux: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-12-14T23:00:00.000+00:00",
      "generator": {
        "date": "2025-12-15T10:15:06.656+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2025-2563",
      "initial_release_date": "2025-11-11T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-11-11T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-11-30T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-12-14T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Fedora aufgenommen"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "azl3 nghttp2 1.61.0-2 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 nghttp2 1.61.0-2 on 3.0",
                  "product_id": "T048506",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_nghttp2_1.61.0-2_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 libarchive 3.7.7-3 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 libarchive 3.7.7-3 on 3.0",
                  "product_id": "T048507",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_libarchive_3.7.7-3_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 kernel 6.6.104.2-4 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 kernel 6.6.104.2-4 on 3.0",
                  "product_id": "T048508",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_kernel_6.6.104.2-4_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 curl 8.11.1-4 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 curl 8.11.1-4 on 3.0",
                  "product_id": "T048509",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_curl_8.11.1-4_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 cmake 3.30.3-10 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 cmake 3.30.3-10 on 3.0",
                  "product_id": "T048510",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_cmake_3.30.3-10_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 mysql 8.0.44-2 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 mysql 8.0.44-2 on 3.0",
                  "product_id": "T048512",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_mysql_8.0.44-2_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 libxml2 2.11.5-7 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 libxml2 2.11.5-7 on 3.0",
                  "product_id": "T048513",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_libxml2_2.11.5-7_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 rust 1.75.0-21 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 rust 1.75.0-21 on 3.0",
                  "product_id": "T048514",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_rust_1.75.0-21_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 containerd2 2.0.0-14 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 containerd2 2.0.0-14 on 3.0",
                  "product_id": "T048515",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_containerd2_2.0.0-14_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 rust 1.86.0-9 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 rust 1.86.0-9 on 3.0",
                  "product_id": "T048516",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_rust_1.86.0-9_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 kubevirt 1.5.0-5 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 kubevirt 1.5.0-5 on 3.0",
                  "product_id": "T048517",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_kubevirt_1.5.0-5_on_3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "azl3 runc 1.3.3-1 on 3.0",
                "product": {
                  "name": "Microsoft Azure Linux azl3 runc 1.3.3-1 on 3.0",
                  "product_id": "T048518",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_linux:azl3_runc_1.3.3-1_on_3.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Azure Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Subsystem for Linux GUI",
                "product": {
                  "name": "Microsoft Windows Subsystem for Linux GUI",
                  "product_id": "T048511",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows:subsystem_for_linux_gui"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Windows"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-25621",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2024-25621"
    },
    {
      "cve": "CVE-2025-10966",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-10966"
    },
    {
      "cve": "CVE-2025-12863",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-12863"
    },
    {
      "cve": "CVE-2025-12875",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-12875"
    },
    {
      "cve": "CVE-2025-31133",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-31133"
    },
    {
      "cve": "CVE-2025-40107",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-40107"
    },
    {
      "cve": "CVE-2025-40109",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-40109"
    },
    {
      "cve": "CVE-2025-52565",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-52565"
    },
    {
      "cve": "CVE-2025-52881",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-52881"
    },
    {
      "cve": "CVE-2025-60753",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-60753"
    },
    {
      "cve": "CVE-2025-62220",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-62220"
    },
    {
      "cve": "CVE-2025-64329",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-64329"
    },
    {
      "cve": "CVE-2025-64432",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-64432"
    },
    {
      "cve": "CVE-2025-64433",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-64433"
    },
    {
      "cve": "CVE-2025-64434",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-64434"
    },
    {
      "cve": "CVE-2025-64435",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-64435"
    },
    {
      "cve": "CVE-2025-64436",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-64436"
    },
    {
      "cve": "CVE-2025-64437",
      "product_status": {
        "known_affected": [
          "74185",
          "T048506",
          "T048517",
          "T048516",
          "T048515",
          "T048514",
          "T002207",
          "T048509",
          "T048508",
          "T048507",
          "T048518",
          "T048513",
          "T048512",
          "T048511",
          "T048510"
        ]
      },
      "release_date": "2025-11-11T23:00:00.000+00:00",
      "title": "CVE-2025-64437"
    }
  ]
}

CVE-2024-25621 (GCVE-0-2024-25621)

Vulnerability from cvelistv5 – Published: 2025-11-06 18:36 – Updated: 2025-11-06 19:35

Title

containerd affected by a local privilege escalation via wide permissions on CRI directory

Summary

containerd is an open-source container runtime. Versions 0.1.0 through 1.7.28, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4 and 2.2.0-beta.0 through 2.2.0-rc.1 have an overly broad default permission vulnerability. Directory paths `/var/lib/containerd`, `/run/containerd/io.containerd.grpc.v1.cri` and `/run/containerd/io.containerd.sandbox.controller.v1.shim` were all created with incorrect permissions. This issue is fixed in versions 1.7.29, 2.0.7, 2.1.5 and 2.2.0. Workarounds include updating system administrator permissions so the host can manually chmod the directories to not have group or world accessible permissions, or to run containerd in rootless mode.

Severity

7.3 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-279 - Incorrect Execution-Assigned Permissions

Assigner

GitHub_M

References

3 references

URL	Tags
https://github.com/containerd/containerd/security…	x_refsource_CONFIRM
https://github.com/containerd/containerd/commit/7…	x_refsource_MISC
https://github.com/containerd/containerd/blob/mai…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
containerd	containerd	Affected: < 1.7.29 Affected: >= 2.0.0-beta.0, < 2.0.7 Affected: >= 2.1.0-beta.0, < 2.1.5 Affected: >= 2.2.0-beta.0, < 2.2.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-25621",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-11-06T19:34:44.710425Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-11-06T19:35:13.415Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "containerd",
          "vendor": "containerd",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 1.7.29"
            },
            {
              "status": "affected",
              "version": "\u003e= 2.0.0-beta.0, \u003c 2.0.7"
            },
            {
              "status": "affected",
              "version": "\u003e= 2.1.0-beta.0, \u003c 2.1.5"
            },
            {
              "status": "affected",
              "version": "\u003e= 2.2.0-beta.0, \u003c 2.2.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "containerd is an open-source container runtime. Versions 0.1.0 through 1.7.28, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4 and 2.2.0-beta.0 through 2.2.0-rc.1 have an overly broad default permission vulnerability. Directory paths `/var/lib/containerd`, `/run/containerd/io.containerd.grpc.v1.cri` and `/run/containerd/io.containerd.sandbox.controller.v1.shim` were all created with incorrect permissions. This issue is fixed in versions 1.7.29, 2.0.7, 2.1.5 and 2.2.0. Workarounds include updating system administrator permissions so the host can manually chmod the directories to not have group or world accessible permissions, or to run containerd in rootless mode."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-279",
              "description": "CWE-279: Incorrect Execution-Assigned Permissions",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-06T18:36:21.566Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/containerd/containerd/security/advisories/GHSA-pwhc-rpq9-4c8w",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/containerd/containerd/security/advisories/GHSA-pwhc-rpq9-4c8w"
        },
        {
          "name": "https://github.com/containerd/containerd/commit/7c59e8e9e970d38061a77b586b23655c352bfec5",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/containerd/containerd/commit/7c59e8e9e970d38061a77b586b23655c352bfec5"
        },
        {
          "name": "https://github.com/containerd/containerd/blob/main/docs/rootless.md",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/containerd/containerd/blob/main/docs/rootless.md"
        }
      ],
      "source": {
        "advisory": "GHSA-pwhc-rpq9-4c8w",
        "discovery": "UNKNOWN"
      },
      "title": "containerd affected by a local privilege escalation via wide permissions on CRI directory"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-25621",
    "datePublished": "2025-11-06T18:36:21.566Z",
    "dateReserved": "2024-02-08T22:26:33.511Z",
    "dateUpdated": "2025-11-06T19:35:13.415Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-10966 (GCVE-0-2025-10966)

Vulnerability from cvelistv5 – Published: 2025-11-07 07:26 – Updated: 2026-06-02 12:59

Title

missing SFTP host verification with wolfSSH

Summary

curl's code for managing SSH connections when SFTP was done using the wolfSSH powered backend was flawed and missed host verification mechanisms. This prevents curl from detecting MITM attackers and more.

Severity

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-322 Key Exchange without Entity Authentication

Assigner

curl

References

5 references

URL	Tags
https://curl.se/docs/CVE-2025-10966.json
https://curl.se/docs/CVE-2025-10966.html
https://hackerone.com/reports/3355218
http://www.openwall.com/lists/oss-security/2025/11/05/2
https://cert-portal.siemens.com/productcert/html/…

Impacted products

2 products

Vendor	Product	Version
curl	curl	Affected: 8.16.0 , ≤ 8.16.0 (semver) Affected: 8.15.0 , ≤ 8.15.0 (semver) Affected: 8.14.1 , ≤ 8.14.1 (semver) Affected: 8.14.0 , ≤ 8.14.0 (semver) Affected: 8.13.0 , ≤ 8.13.0 (semver) Affected: 8.12.1 , ≤ 8.12.1 (semver) Affected: 8.12.0 , ≤ 8.12.0 (semver) Affected: 8.11.1 , ≤ 8.11.1 (semver) Affected: 8.11.0 , ≤ 8.11.0 (semver) Affected: 8.10.1 , ≤ 8.10.1 (semver) Affected: 8.10.0 , ≤ 8.10.0 (semver) Affected: 8.9.1 , ≤ 8.9.1 (semver) Affected: 8.9.0 , ≤ 8.9.0 (semver) Affected: 8.8.0 , ≤ 8.8.0 (semver) Affected: 8.7.1 , ≤ 8.7.1 (semver) Affected: 8.7.0 , ≤ 8.7.0 (semver) Affected: 8.6.0 , ≤ 8.6.0 (semver) Affected: 8.5.0 , ≤ 8.5.0 (semver) Affected: 8.4.0 , ≤ 8.4.0 (semver) Affected: 8.3.0 , ≤ 8.3.0 (semver) Affected: 8.2.1 , ≤ 8.2.1 (semver) Affected: 8.2.0 , ≤ 8.2.0 (semver) Affected: 8.1.2 , ≤ 8.1.2 (semver) Affected: 8.1.1 , ≤ 8.1.1 (semver) Affected: 8.1.0 , ≤ 8.1.0 (semver) Affected: 8.0.1 , ≤ 8.0.1 (semver) Affected: 8.0.0 , ≤ 8.0.0 (semver) Affected: 7.88.1 , ≤ 7.88.1 (semver) Affected: 7.88.0 , ≤ 7.88.0 (semver) Affected: 7.87.0 , ≤ 7.87.0 (semver) Affected: 7.86.0 , ≤ 7.86.0 (semver) Affected: 7.85.0 , ≤ 7.85.0 (semver) Affected: 7.84.0 , ≤ 7.84.0 (semver) Affected: 7.83.1 , ≤ 7.83.1 (semver) Affected: 7.83.0 , ≤ 7.83.0 (semver) Affected: 7.82.0 , ≤ 7.82.0 (semver) Affected: 7.81.0 , ≤ 7.81.0 (semver) Affected: 7.80.0 , ≤ 7.80.0 (semver) Affected: 7.79.1 , ≤ 7.79.1 (semver) Affected: 7.79.0 , ≤ 7.79.0 (semver) Affected: 7.78.0 , ≤ 7.78.0 (semver) Affected: 7.77.0 , ≤ 7.77.0 (semver) Affected: 7.76.1 , ≤ 7.76.1 (semver) Affected: 7.76.0 , ≤ 7.76.0 (semver) Affected: 7.75.0 , ≤ 7.75.0 (semver) Affected: 7.74.0 , ≤ 7.74.0 (semver) Affected: 7.73.0 , ≤ 7.73.0 (semver) Affected: 7.72.0 , ≤ 7.72.0 (semver) Affected: 7.71.1 , ≤ 7.71.1 (semver) Affected: 7.71.0 , ≤ 7.71.0 (semver) Affected: 7.70.0 , ≤ 7.70.0 (semver) Affected: 7.69.1 , ≤ 7.69.1 (semver) Affected: 7.69.0 , ≤ 7.69.0 (semver)
Siemens	RUGGEDCOM RST2428P	Affected: 0 , < V4.0 (custom)

Credits

Stanislav Fort (Aisle Research) Daniel Stenberg

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-07T08:05:50.150Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "http://www.openwall.com/lists/oss-security/2025/11/05/2"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 4.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-10966",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-11-10T20:26:03.531168Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-11-10T20:26:07.282Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "affected": [
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM RST2428P",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-02T12:59:51.873Z",
          "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
          "shortName": "siemens-SADP"
        },
        "references": [
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-253495.html"
          }
        ],
        "x_adpType": "supplier"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "curl",
          "vendor": "curl",
          "versions": [
            {
              "lessThanOrEqual": "8.16.0",
              "status": "affected",
              "version": "8.16.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.15.0",
              "status": "affected",
              "version": "8.15.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.14.1",
              "status": "affected",
              "version": "8.14.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.14.0",
              "status": "affected",
              "version": "8.14.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.13.0",
              "status": "affected",
              "version": "8.13.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.12.1",
              "status": "affected",
              "version": "8.12.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.12.0",
              "status": "affected",
              "version": "8.12.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.11.1",
              "status": "affected",
              "version": "8.11.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.11.0",
              "status": "affected",
              "version": "8.11.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.10.1",
              "status": "affected",
              "version": "8.10.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.10.0",
              "status": "affected",
              "version": "8.10.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.9.1",
              "status": "affected",
              "version": "8.9.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.9.0",
              "status": "affected",
              "version": "8.9.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.8.0",
              "status": "affected",
              "version": "8.8.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.7.1",
              "status": "affected",
              "version": "8.7.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.7.0",
              "status": "affected",
              "version": "8.7.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.6.0",
              "status": "affected",
              "version": "8.6.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.5.0",
              "status": "affected",
              "version": "8.5.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.4.0",
              "status": "affected",
              "version": "8.4.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.3.0",
              "status": "affected",
              "version": "8.3.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.2.1",
              "status": "affected",
              "version": "8.2.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.2.0",
              "status": "affected",
              "version": "8.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.1.2",
              "status": "affected",
              "version": "8.1.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.1.1",
              "status": "affected",
              "version": "8.1.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.1.0",
              "status": "affected",
              "version": "8.1.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.0.1",
              "status": "affected",
              "version": "8.0.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.0.0",
              "status": "affected",
              "version": "8.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.88.1",
              "status": "affected",
              "version": "7.88.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.88.0",
              "status": "affected",
              "version": "7.88.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.87.0",
              "status": "affected",
              "version": "7.87.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.86.0",
              "status": "affected",
              "version": "7.86.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.85.0",
              "status": "affected",
              "version": "7.85.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.84.0",
              "status": "affected",
              "version": "7.84.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.83.1",
              "status": "affected",
              "version": "7.83.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.83.0",
              "status": "affected",
              "version": "7.83.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.82.0",
              "status": "affected",
              "version": "7.82.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.81.0",
              "status": "affected",
              "version": "7.81.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.80.0",
              "status": "affected",
              "version": "7.80.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.79.1",
              "status": "affected",
              "version": "7.79.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.79.0",
              "status": "affected",
              "version": "7.79.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.78.0",
              "status": "affected",
              "version": "7.78.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.77.0",
              "status": "affected",
              "version": "7.77.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.76.1",
              "status": "affected",
              "version": "7.76.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.76.0",
              "status": "affected",
              "version": "7.76.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.75.0",
              "status": "affected",
              "version": "7.75.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.74.0",
              "status": "affected",
              "version": "7.74.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.73.0",
              "status": "affected",
              "version": "7.73.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.72.0",
              "status": "affected",
              "version": "7.72.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.71.1",
              "status": "affected",
              "version": "7.71.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.71.0",
              "status": "affected",
              "version": "7.71.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.70.0",
              "status": "affected",
              "version": "7.70.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.69.1",
              "status": "affected",
              "version": "7.69.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.69.0",
              "status": "affected",
              "version": "7.69.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Stanislav Fort (Aisle Research)"
        },
        {
          "lang": "en",
          "type": "remediation developer",
          "value": "Daniel Stenberg"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "curl\u0027s code for managing SSH connections when SFTP was done using the wolfSSH\npowered backend was flawed and missed host verification mechanisms.\n\nThis prevents curl from detecting MITM attackers and more."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CWE-322 Key Exchange without Entity Authentication",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-07T07:26:30.351Z",
        "orgId": "2499f714-1537-4658-8207-48ae4bb9eae9",
        "shortName": "curl"
      },
      "references": [
        {
          "name": "json",
          "url": "https://curl.se/docs/CVE-2025-10966.json"
        },
        {
          "name": "www",
          "url": "https://curl.se/docs/CVE-2025-10966.html"
        },
        {
          "name": "issue",
          "url": "https://hackerone.com/reports/3355218"
        }
      ],
      "title": "missing SFTP host verification with wolfSSH"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "2499f714-1537-4658-8207-48ae4bb9eae9",
    "assignerShortName": "curl",
    "cveId": "CVE-2025-10966",
    "datePublished": "2025-11-07T07:26:30.351Z",
    "dateReserved": "2025-09-25T10:15:10.502Z",
    "dateUpdated": "2026-06-02T12:59:51.873Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-12863 (GCVE-0-2025-12863)

Vulnerability from cvelistv5 – Published: 2025-11-07 20:59 – Updated: 2025-11-20 12:11

This CVE was assigned for a libxml2 issue#1012 but later deemed not valid. Ref.: https://gitlab.gnome.org/GNOME/libxml2/-/issues/1012#note_2608283

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "providerMetadata": {
        "dateUpdated": "2025-11-20T12:11:37.790Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "rejectedReasons": [
        {
          "lang": "en",
          "value": "This CVE was assigned for a libxml2 issue#1012 but later deemed not valid. Ref.: https://gitlab.gnome.org/GNOME/libxml2/-/issues/1012#note_2608283"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2025-12863",
    "datePublished": "2025-11-07T20:59:35.021Z",
    "dateRejected": "2025-11-20T12:11:37.790Z",
    "dateReserved": "2025-11-07T10:30:42.765Z",
    "dateUpdated": "2025-11-20T12:11:37.790Z",
    "state": "REJECTED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-12875 (GCVE-0-2025-12875)

Vulnerability from cvelistv5 – Published: 2025-11-07 20:32 – Updated: 2026-02-24 06:25 X_Open Source

Title

mruby array.c ary_fill_exec out-of-bounds write

Summary

A weakness has been identified in mruby 3.4.0. This vulnerability affects the function ary_fill_exec of the file mrbgems/mruby-array-ext/src/array.c. Executing a manipulation of the argument start/length can lead to out-of-bounds write. The attack needs to be launched locally. The exploit has been made available to the public and could be used for attacks. This patch is called 93619f06dd378db6766666b30c08978311c7ec94. It is best practice to apply a patch to resolve this issue.

Severity

4.8 (Medium)


                        
                          CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

5.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C

5.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C

SSVC

Exploitation: poc Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-787 - Out-of-bounds Write
CWE-119 - Memory Corruption

Assigner

VulDB

References

8 references

URL	Tags
https://vuldb.com/?id.331511	vdb-entrytechnical-description
https://vuldb.com/?ctiid.331511	signaturepermissions-required
https://vuldb.com/?submit.680879	third-party-advisory
https://github.com/mruby/mruby/issues/6650	issue-tracking
https://github.com/mruby/mruby/issues/6650#event-…	issue-tracking
https://github.com/mruby/mruby/issues/6650#issuec…	exploitissue-tracking
https://github.com/makesoftwaresafe/mruby/commit/…	patch
https://github.com/mruby/mruby/	product

Impacted products

1 product

Vendor	Product	Version
n/a	mruby	Affected: 3.4.0 cpe:2.3:a:mruby:mruby::::::::

Credits

tjbecker (VulDB User)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-12875",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-11-13T14:13:49.237460Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-11-13T14:14:24.271Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "exploit"
            ],
            "url": "https://github.com/mruby/mruby/issues/6650"
          },
          {
            "tags": [
              "exploit"
            ],
            "url": "https://github.com/mruby/mruby/issues/6650#issuecomment-3430851605"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:mruby:mruby:*:*:*:*:*:*:*:*"
          ],
          "product": "mruby",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "3.4.0"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "tjbecker (VulDB User)"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A weakness has been identified in mruby 3.4.0. This vulnerability affects the function ary_fill_exec of the file mrbgems/mruby-array-ext/src/array.c. Executing a manipulation of the argument start/length can lead to out-of-bounds write. The attack needs to be launched locally. The exploit has been made available to the public and could be used for attacks. This patch is called 93619f06dd378db6766666b30c08978311c7ec94. It is best practice to apply a patch to resolve this issue."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "baseScore": 4.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
            "version": "4.0"
          }
        },
        {
          "cvssV3_1": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
            "version": "3.1"
          }
        },
        {
          "cvssV3_0": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
            "version": "3.0"
          }
        },
        {
          "cvssV2_0": {
            "baseScore": 4.3,
            "vectorString": "AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C",
            "version": "2.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-787",
              "description": "Out-of-bounds Write",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-119",
              "description": "Memory Corruption",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-02-24T06:25:01.873Z",
        "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "shortName": "VulDB"
      },
      "references": [
        {
          "name": "VDB-331511 | mruby array.c ary_fill_exec out-of-bounds write",
          "tags": [
            "vdb-entry",
            "technical-description"
          ],
          "url": "https://vuldb.com/?id.331511"
        },
        {
          "name": "VDB-331511 | CTI Indicators (IOB, IOC, IOA)",
          "tags": [
            "signature",
            "permissions-required"
          ],
          "url": "https://vuldb.com/?ctiid.331511"
        },
        {
          "name": "Submit #680879 | mruby 3.4.0 Out-of-bounds Write",
          "tags": [
            "third-party-advisory"
          ],
          "url": "https://vuldb.com/?submit.680879"
        },
        {
          "tags": [
            "issue-tracking"
          ],
          "url": "https://github.com/mruby/mruby/issues/6650"
        },
        {
          "tags": [
            "issue-tracking"
          ],
          "url": "https://github.com/mruby/mruby/issues/6650#event-20443453808"
        },
        {
          "tags": [
            "exploit",
            "issue-tracking"
          ],
          "url": "https://github.com/mruby/mruby/issues/6650#issuecomment-3430851605"
        },
        {
          "tags": [
            "patch"
          ],
          "url": "https://github.com/makesoftwaresafe/mruby/commit/93619f06dd378db6766666b30c08978311c7ec94"
        },
        {
          "tags": [
            "product"
          ],
          "url": "https://github.com/mruby/mruby/"
        }
      ],
      "tags": [
        "x_open-source"
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2025-11-07T00:00:00.000Z",
          "value": "Advisory disclosed"
        },
        {
          "lang": "en",
          "time": "2025-11-07T01:00:00.000Z",
          "value": "VulDB entry created"
        },
        {
          "lang": "en",
          "time": "2025-12-02T17:31:54.000Z",
          "value": "VulDB entry last update"
        }
      ],
      "title": "mruby array.c ary_fill_exec out-of-bounds write"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
    "assignerShortName": "VulDB",
    "cveId": "CVE-2025-12875",
    "datePublished": "2025-11-07T20:32:07.100Z",
    "dateReserved": "2025-11-07T15:09:38.806Z",
    "dateUpdated": "2026-02-24T06:25:01.873Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-31133 (GCVE-0-2025-31133)

Vulnerability from cvelistv5 – Published: 2025-11-06 18:47 – Updated: 2025-11-06 19:22

Title

runc container escape via "masked path" abuse due to mount race conditions

Summary

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container's /dev/null) was actually a real /dev/null inode when using the container's /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.

Severity

7.3 (High)


                        
                          CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-61 - UNIX Symbolic Link (Symlink) Following
CWE-363 - Race Condition Enabling Link Following

Assigner

GitHub_M

References

5 references

URL	Tags
https://github.com/opencontainers/runc/security/a…	x_refsource_CONFIRM
https://github.com/opencontainers/runc/commit/1a3…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/5d7…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/847…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/db1…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
opencontainers	runc	Affected: < 1.2.8 Affected: >= 1.3.0-rc.1, < 1.3.3 Affected: >= 1.4.0-rc.1, <= 1.4.0-rc.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-31133",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-11-06T19:03:45.356326Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-11-06T19:22:22.047Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "runc",
          "vendor": "opencontainers",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 1.2.8"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.3.0-rc.1, \u003c 1.3.3"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.4.0-rc.1, \u003c= 1.4.0-rc.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack:  an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "LOCAL",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "privilegesRequired": "LOW",
            "subAvailabilityImpact": "HIGH",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "HIGH",
            "userInteraction": "ACTIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-61",
              "description": "CWE-61: UNIX Symbolic Link (Symlink) Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-363",
              "description": "CWE-363: Race Condition Enabling Link Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-06T18:47:47.335Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/1a30a8f3d921acbbb6a4bb7e99da2c05f8d48522",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/1a30a8f3d921acbbb6a4bb7e99da2c05f8d48522"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/5d7b2424072449872d1cd0c937f2ca25f418eb66",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/5d7b2424072449872d1cd0c937f2ca25f418eb66"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/8476df83b534a2522b878c0507b3491def48db9f",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/8476df83b534a2522b878c0507b3491def48db9f"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64"
        }
      ],
      "source": {
        "advisory": "GHSA-9493-h29p-rfm2",
        "discovery": "UNKNOWN"
      },
      "title": "runc container escape via \"masked path\" abuse due to mount race conditions"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-31133",
    "datePublished": "2025-11-06T18:47:47.335Z",
    "dateReserved": "2025-03-26T15:04:52.627Z",
    "dateUpdated": "2025-11-06T19:22:22.047Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-40107 (GCVE-0-2025-40107)

Vulnerability from cvelistv5 – Published: 2025-11-03 12:15 – Updated: 2026-05-11 21:42

Title

can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled

Summary

In the Linux kernel, the following vulnerability has been resolved: can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled This issue is similar to the vulnerability in the `mcp251x` driver, which was fixed in commit 03c427147b2d ("can: mcp251x: fix resume from sleep before interface was brought up"). In the `hi311x` driver, when the device resumes from sleep, the driver schedules `priv->restart_work`. However, if the network interface was not previously enabled, the `priv->wq` (workqueue) is not allocated and initialized, leading to a null pointer dereference. To fix this, we move the allocation and initialization of the workqueue from the `hi3110_open` function to the `hi3110_can_probe` function. This ensures that the workqueue is properly initialized before it is used during device resume. And added logic to destroy the workqueue in the error handling paths of `hi3110_can_probe` and in the `hi3110_can_remove` function to prevent resource leaks.

Severity

No CVSS data available.

Assigner

Linux

References

5 references

URL	Tags
https://git.kernel.org/stable/c/d1fc4c041459e2d48…
https://git.kernel.org/stable/c/e93af787187e58593…
https://git.kernel.org/stable/c/1d2ef21f02baff0c1…
https://git.kernel.org/stable/c/fd00cf38fd437c979…
https://git.kernel.org/stable/c/6b696808472197b77…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 57e83fb9b7468c75cb65cde1d23043553c346c6d , < d1fc4c041459e2d4856c1b2501486ba4f0cbf96b (git) Affected: 57e83fb9b7468c75cb65cde1d23043553c346c6d , < e93af787187e585933570563c643337fa731584a (git) Affected: 57e83fb9b7468c75cb65cde1d23043553c346c6d , < 1d2ef21f02baff0c109ad78b9e835fb4acb14533 (git) Affected: 57e83fb9b7468c75cb65cde1d23043553c346c6d , < fd00cf38fd437c979f0e5905e3ebdfc3f55a4b96 (git) Affected: 57e83fb9b7468c75cb65cde1d23043553c346c6d , < 6b696808472197b77b888f50bc789a3bae077743 (git)
Linux	Linux	Affected: 4.12 Unaffected: 0 , < 4.12 (semver) Unaffected: 6.1.156 , ≤ 6.1.* (semver) Unaffected: 6.6.111 , ≤ 6.6.* (semver) Unaffected: 6.12.52 , ≤ 6.12.* (semver) Unaffected: 6.16.12 , ≤ 6.16.* (semver) Unaffected: 6.17 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/can/spi/hi311x.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d1fc4c041459e2d4856c1b2501486ba4f0cbf96b",
              "status": "affected",
              "version": "57e83fb9b7468c75cb65cde1d23043553c346c6d",
              "versionType": "git"
            },
            {
              "lessThan": "e93af787187e585933570563c643337fa731584a",
              "status": "affected",
              "version": "57e83fb9b7468c75cb65cde1d23043553c346c6d",
              "versionType": "git"
            },
            {
              "lessThan": "1d2ef21f02baff0c109ad78b9e835fb4acb14533",
              "status": "affected",
              "version": "57e83fb9b7468c75cb65cde1d23043553c346c6d",
              "versionType": "git"
            },
            {
              "lessThan": "fd00cf38fd437c979f0e5905e3ebdfc3f55a4b96",
              "status": "affected",
              "version": "57e83fb9b7468c75cb65cde1d23043553c346c6d",
              "versionType": "git"
            },
            {
              "lessThan": "6b696808472197b77b888f50bc789a3bae077743",
              "status": "affected",
              "version": "57e83fb9b7468c75cb65cde1d23043553c346c6d",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/can/spi/hi311x.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.12"
            },
            {
              "lessThan": "4.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.156",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.111",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.52",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.16.*",
              "status": "unaffected",
              "version": "6.16.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.17",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.156",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.111",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.52",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.16.12",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.17",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled\n\nThis issue is similar to the vulnerability in the `mcp251x` driver,\nwhich was fixed in commit 03c427147b2d (\"can: mcp251x: fix resume from\nsleep before interface was brought up\").\n\nIn the `hi311x` driver, when the device resumes from sleep, the driver\nschedules `priv-\u003erestart_work`. However, if the network interface was\nnot previously enabled, the `priv-\u003ewq` (workqueue) is not allocated and\ninitialized, leading to a null pointer dereference.\n\nTo fix this, we move the allocation and initialization of the workqueue\nfrom the `hi3110_open` function to the `hi3110_can_probe` function.\nThis ensures that the workqueue is properly initialized before it is\nused during device resume. And added logic to destroy the workqueue\nin the error handling paths of `hi3110_can_probe` and in the\n`hi3110_can_remove` function to prevent resource leaks."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:42:39.083Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d1fc4c041459e2d4856c1b2501486ba4f0cbf96b"
        },
        {
          "url": "https://git.kernel.org/stable/c/e93af787187e585933570563c643337fa731584a"
        },
        {
          "url": "https://git.kernel.org/stable/c/1d2ef21f02baff0c109ad78b9e835fb4acb14533"
        },
        {
          "url": "https://git.kernel.org/stable/c/fd00cf38fd437c979f0e5905e3ebdfc3f55a4b96"
        },
        {
          "url": "https://git.kernel.org/stable/c/6b696808472197b77b888f50bc789a3bae077743"
        }
      ],
      "title": "can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-40107",
    "datePublished": "2025-11-03T12:15:12.587Z",
    "dateReserved": "2025-04-16T07:20:57.167Z",
    "dateUpdated": "2026-05-11T21:42:39.083Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-40109 (GCVE-0-2025-40109)

Vulnerability from cvelistv5 – Published: 2025-11-09 04:35 – Updated: 2026-05-11 21:42

Title

crypto: rng - Ensure set_ent is always present

Summary

In the Linux kernel, the following vulnerability has been resolved: crypto: rng - Ensure set_ent is always present Ensure that set_ent is always set since only drbg provides it.

Severity

No CVSS data available.

Assigner

Linux

References

8 references

URL	Tags
https://git.kernel.org/stable/c/15d6f42da1bb52762…
https://git.kernel.org/stable/c/bd903c25b652c3318…
https://git.kernel.org/stable/c/17acbcd44fe8dc17d…
https://git.kernel.org/stable/c/ab172f4f42626549b…
https://git.kernel.org/stable/c/c5c703b50e91dd474…
https://git.kernel.org/stable/c/e247a7d138e514a40…
https://git.kernel.org/stable/c/915cb75983bc5e8b8…
https://git.kernel.org/stable/c/c0d36727bf39bb16e…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 77ebdabe8de7c02f43c6de3357f79ff96f9f0579 , < 15d6f42da1bb527629d8e1067b1302d58dec9166 (git) Affected: 77ebdabe8de7c02f43c6de3357f79ff96f9f0579 , < bd903c25b652c331831226cdf56c8179d18e43f4 (git) Affected: 77ebdabe8de7c02f43c6de3357f79ff96f9f0579 , < 17acbcd44fe8dc17dc1072375e76df2d52da6ac8 (git) Affected: 77ebdabe8de7c02f43c6de3357f79ff96f9f0579 , < ab172f4f42626549b02bada05f09e3f2b0cc26ec (git) Affected: 77ebdabe8de7c02f43c6de3357f79ff96f9f0579 , < c5c703b50e91dd4748769f4c5ab50d9ad60be370 (git) Affected: 77ebdabe8de7c02f43c6de3357f79ff96f9f0579 , < e247a7d138e514a40edda7c4d72c8bd49bb2cad3 (git) Affected: 77ebdabe8de7c02f43c6de3357f79ff96f9f0579 , < 915cb75983bc5e8b80f8a2f25a4af463f7b18c14 (git) Affected: 77ebdabe8de7c02f43c6de3357f79ff96f9f0579 , < c0d36727bf39bb16ef0a67ed608e279535ebf0da (git)
Linux	Linux	Affected: 5.10 Unaffected: 0 , < 5.10 (semver) Unaffected: 5.10.246 , ≤ 5.10.* (semver) Unaffected: 5.15.195 , ≤ 5.15.* (semver) Unaffected: 6.1.156 , ≤ 6.1.* (semver) Unaffected: 6.6.111 , ≤ 6.6.* (semver) Unaffected: 6.12.52 , ≤ 6.12.* (semver) Unaffected: 6.16.12 , ≤ 6.16.* (semver) Unaffected: 6.17.2 , ≤ 6.17.* (semver) Unaffected: 6.18 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "crypto/rng.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "15d6f42da1bb527629d8e1067b1302d58dec9166",
              "status": "affected",
              "version": "77ebdabe8de7c02f43c6de3357f79ff96f9f0579",
              "versionType": "git"
            },
            {
              "lessThan": "bd903c25b652c331831226cdf56c8179d18e43f4",
              "status": "affected",
              "version": "77ebdabe8de7c02f43c6de3357f79ff96f9f0579",
              "versionType": "git"
            },
            {
              "lessThan": "17acbcd44fe8dc17dc1072375e76df2d52da6ac8",
              "status": "affected",
              "version": "77ebdabe8de7c02f43c6de3357f79ff96f9f0579",
              "versionType": "git"
            },
            {
              "lessThan": "ab172f4f42626549b02bada05f09e3f2b0cc26ec",
              "status": "affected",
              "version": "77ebdabe8de7c02f43c6de3357f79ff96f9f0579",
              "versionType": "git"
            },
            {
              "lessThan": "c5c703b50e91dd4748769f4c5ab50d9ad60be370",
              "status": "affected",
              "version": "77ebdabe8de7c02f43c6de3357f79ff96f9f0579",
              "versionType": "git"
            },
            {
              "lessThan": "e247a7d138e514a40edda7c4d72c8bd49bb2cad3",
              "status": "affected",
              "version": "77ebdabe8de7c02f43c6de3357f79ff96f9f0579",
              "versionType": "git"
            },
            {
              "lessThan": "915cb75983bc5e8b80f8a2f25a4af463f7b18c14",
              "status": "affected",
              "version": "77ebdabe8de7c02f43c6de3357f79ff96f9f0579",
              "versionType": "git"
            },
            {
              "lessThan": "c0d36727bf39bb16ef0a67ed608e279535ebf0da",
              "status": "affected",
              "version": "77ebdabe8de7c02f43c6de3357f79ff96f9f0579",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "crypto/rng.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.10"
            },
            {
              "lessThan": "5.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.246",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.195",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.156",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.111",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.52",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.16.*",
              "status": "unaffected",
              "version": "6.16.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.17.*",
              "status": "unaffected",
              "version": "6.17.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.18",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.246",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.195",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.156",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.111",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.52",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.16.12",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.17.2",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.18",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: rng - Ensure set_ent is always present\n\nEnsure that set_ent is always set since only drbg provides it."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:42:45.679Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/15d6f42da1bb527629d8e1067b1302d58dec9166"
        },
        {
          "url": "https://git.kernel.org/stable/c/bd903c25b652c331831226cdf56c8179d18e43f4"
        },
        {
          "url": "https://git.kernel.org/stable/c/17acbcd44fe8dc17dc1072375e76df2d52da6ac8"
        },
        {
          "url": "https://git.kernel.org/stable/c/ab172f4f42626549b02bada05f09e3f2b0cc26ec"
        },
        {
          "url": "https://git.kernel.org/stable/c/c5c703b50e91dd4748769f4c5ab50d9ad60be370"
        },
        {
          "url": "https://git.kernel.org/stable/c/e247a7d138e514a40edda7c4d72c8bd49bb2cad3"
        },
        {
          "url": "https://git.kernel.org/stable/c/915cb75983bc5e8b80f8a2f25a4af463f7b18c14"
        },
        {
          "url": "https://git.kernel.org/stable/c/c0d36727bf39bb16ef0a67ed608e279535ebf0da"
        }
      ],
      "title": "crypto: rng - Ensure set_ent is always present",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-40109",
    "datePublished": "2025-11-09T04:35:59.979Z",
    "dateReserved": "2025-04-16T07:20:57.167Z",
    "dateUpdated": "2026-05-11T21:42:45.679Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-52565 (GCVE-0-2025-52565)

Vulnerability from cvelistv5 – Published: 2025-11-06 20:02 – Updated: 2025-11-06 21:32

Title

container escape due to /dev/console mount and related races

Summary

runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.

Severity

8.4 (High)


                        
                          CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-61 - UNIX Symbolic Link (Symlink) Following
CWE-363 - Race Condition Enabling Link Following

Assigner

GitHub_M

References

9 references

URL	Tags
https://github.com/opencontainers/runc/security/a…	x_refsource_CONFIRM
https://github.com/opencontainers/runc/commit/01d…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/398…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/531…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/9be…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/aee…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/db1…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/de8…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/ff9…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
opencontainers	runc	Affected: >= 1.0.0-rc3, < 1.2.8 Affected: >= 1.3.0-rc.1, < 1.3.3 Affected: >= 1.4.0-rc.1, < 1.4.0-rc.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-52565",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-11-06T21:32:07.457681Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-11-06T21:32:19.129Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "runc",
          "vendor": "opencontainers",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 1.0.0-rc3, \u003c 1.2.8"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.3.0-rc.1, \u003c 1.3.3"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.4.0-rc.1, \u003c 1.4.0-rc.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "privilegesRequired": "NONE",
            "subAvailabilityImpact": "HIGH",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "HIGH",
            "userInteraction": "PASSIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "HIGH"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-61",
              "description": "CWE-61: UNIX Symbolic Link (Symlink) Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-363",
              "description": "CWE-363: Race Condition Enabling Link Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-06T20:02:58.513Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/01de9d65dc72f67b256ef03f9bfb795a2bf143b4",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/01de9d65dc72f67b256ef03f9bfb795a2bf143b4"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/398955bccb7f20565c224a3064d331c19e422398",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/398955bccb7f20565c224a3064d331c19e422398"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/531ef794e4ecd628006a865ad334a048ee2b4b2e",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/531ef794e4ecd628006a865ad334a048ee2b4b2e"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/9be1dbf4ac67d9840a043ebd2df5c68f36705d1d",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/9be1dbf4ac67d9840a043ebd2df5c68f36705d1d"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/aee7d3fe355dd02939d44155e308ea0052e0d53a",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/aee7d3fe355dd02939d44155e308ea0052e0d53a"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/de87203e625cd7a27141fb5f2ad00a320c69c5e8",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/de87203e625cd7a27141fb5f2ad00a320c69c5e8"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480"
        }
      ],
      "source": {
        "advisory": "GHSA-qw9x-cqr3-wc7r",
        "discovery": "UNKNOWN"
      },
      "title": "container escape due to /dev/console mount and related races"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-52565",
    "datePublished": "2025-11-06T20:02:58.513Z",
    "dateReserved": "2025-06-18T03:55:52.036Z",
    "dateUpdated": "2025-11-06T21:32:19.129Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-52881 (GCVE-0-2025-52881)

Vulnerability from cvelistv5 – Published: 2025-11-06 20:23 – Updated: 2025-11-06 21:07

Title

runc: LSM labels can be bypassed with malicious config using dummy procfs files

Summary

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.

Severity

7.3 (High)


                        
                          CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-61 - UNIX Symbolic Link (Symlink) Following
CWE-363 - Race Condition Enabling Link Following

Assigner

GitHub_M

References

20 references

URL	Tags
https://github.com/opencontainers/runc/security/a…	x_refsource_CONFIRM
https://github.com/opencontainers/runc/security/a…	x_refsource_MISC
https://github.com/opencontainers/runc/security/a…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/ff9…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/ff6…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/ed6…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/db1…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/d61…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/d40…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/b3d…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/77d…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/778…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/6fc…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/4b3…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/44a…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/435…	x_refsource_MISC
https://github.com/opencontainers/runc/commit/3f9…	x_refsource_MISC
https://github.com/opencontainers/runc/blob/v1.4.…	x_refsource_MISC
http://github.com/opencontainers/runc/commit/a413…	x_refsource_MISC
http://github.com/opencontainers/runc/commit/fdcc…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
opencontainers	runc	Affected: <= 1.2.7, < 1.2.8 Affected: <= 1.3.2, < 1.3.3 Affected: <= 1.4.0-rc.2, < 1.4.0-rc.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-52881",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-11-06T21:06:59.235416Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-11-06T21:07:09.382Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "runc",
          "vendor": "opencontainers",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c= 1.2.7, \u003c 1.2.8"
            },
            {
              "status": "affected",
              "version": "\u003c= 1.3.2, \u003c 1.3.3"
            },
            {
              "status": "affected",
              "version": "\u003c= 1.4.0-rc.2, \u003c 1.4.0-rc.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "LOCAL",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "privilegesRequired": "LOW",
            "subAvailabilityImpact": "HIGH",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "HIGH",
            "userInteraction": "ACTIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-61",
              "description": "CWE-61: UNIX Symbolic Link (Symlink) Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-363",
              "description": "CWE-363: Race Condition Enabling Link Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-06T20:23:36.237Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm"
        },
        {
          "name": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r"
        },
        {
          "name": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557"
        },
        {
          "name": "https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md"
        },
        {
          "name": "http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322"
        },
        {
          "name": "http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3"
        }
      ],
      "source": {
        "advisory": "GHSA-cgrx-mc8f-2prm",
        "discovery": "UNKNOWN"
      },
      "title": "runc: LSM labels can be bypassed with malicious config using dummy procfs files"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-52881",
    "datePublished": "2025-11-06T20:23:36.237Z",
    "dateReserved": "2025-06-20T17:42:25.708Z",
    "dateUpdated": "2025-11-06T21:07:09.382Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-60753 (GCVE-0-2025-60753)

Vulnerability from cvelistv5 – Published: 2025-11-05 00:00 – Updated: 2025-11-05 15:44

Summary

An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash).

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

SSVC

Exploitation: poc Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

n/a
CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-400 - Uncontrolled Resource Consumption

Assigner

mitre

References

2 references

URL	Tags
https://github.com/libarchive/libarchive/issues/2725
https://github.com/Papya-j/CVE/tree/main/CVE-2025-60753

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-60753",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-11-05T15:39:22.288768Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-835",
                "description": "CWE-835 Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          },
          {
            "descriptions": [
              {
                "cweId": "CWE-400",
                "description": "CWE-400 Uncontrolled Resource Consumption",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-11-05T15:44:31.278Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-05T15:17:43.562Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://github.com/libarchive/libarchive/issues/2725"
        },
        {
          "url": "https://github.com/Papya-j/CVE/tree/main/CVE-2025-60753"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2025-60753",
    "datePublished": "2025-11-05T00:00:00.000Z",
    "dateReserved": "2025-09-26T00:00:00.000Z",
    "dateUpdated": "2025-11-05T15:44:31.278Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2025-2563

CVE-2024-25621 (GCVE-0-2024-25621)

CVE-2025-10966 (GCVE-0-2025-10966)

CVE-2025-12863 (GCVE-0-2025-12863)

CVE-2025-12875 (GCVE-0-2025-12875)

CVE-2025-31133 (GCVE-0-2025-31133)

CVE-2025-40107 (GCVE-0-2025-40107)

CVE-2025-40109 (GCVE-0-2025-40109)

CVE-2025-52565 (GCVE-0-2025-52565)

CVE-2025-52881 (GCVE-0-2025-52881)

CVE-2025-60753 (GCVE-0-2025-60753)

Tags

Sightings

Nomenclature