CVE-2025-8941

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions linux-pam (affected versions not specified)

Description The Pluggable Authentication Modules (PAM) framework contains a flaw in the pam namespace module. This module improperly handles user-controlled paths, potentially allowing local users to exploit symlink attacks and race conditions to gain root privileges. A proof-of-concept (PoC) exploit has been released for CVE-2025-8941, indicating a high severity and potential for rapid weaponization. The vulnerability stems from the core of Linux operating systems and affects multiple distributions, including Ubuntu, Fedora, and Red Hat Enterprise Linux. The pam namespace module is susceptible to exploitation through the manipulation of paths, leading to privilege escalation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

LPE

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

ALSA-2025:14557

ALSA-2025:15099

BDU:2025-13750

CESA-2025_14557

CVE-2025-8941

ECHO-87F7-2A71-BA0E

INFSA-2025_15099

RHSA-2025:14557

RHSA-2025:15100

RHSA-2025:15101

RHSA-2025:15102

RHSA-2025:15103

RHSA-2025:15104

RHSA-2025:15105

RHSA-2025:15106

RHSA-2025:15107

RHSA-2025_14557

RHSA-2025_15099

Affected Products

Almalinux

Centos

Red Hat

Rocky Linux

Linux-Pam

CVE-2025-8941

Weakness Enumeration

Related Identifiers

Affected Products

References · 61