PT-2025-29365 · Cato Networks · Catoclient
Published
2025-07-13
·
Updated
2025-07-13
·
CVE-2025-7012
CVSS v4.0
8.6
High
| Vector | AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/AU:Y/R:U/RE:M/U:Green |
Name of the Vulnerable Software and Affected Versions:
CatoClient versions prior to 5.5
Description:
An issue in CatoClient for Linux allows a local attacker to escalate privileges to root by exploiting improper symbolic link handling.
Recommendations:
Update CatoClient to version 5.5 or later.
Fix
LPE
Link Following
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Catoclient