PT-2025-47991 · Google · Looker
Sivanesh Ashok
+1
·
Published
2025-11-25
·
Updated
2025-11-25
·
CVE-2025-12742
CVSS v4.0
7.5
High
| Vector | AV:N/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/U:Red |
Name of the Vulnerable Software and Affected Versions
Looker versions prior to 24.12.108
Looker versions prior to 24.18.200
Looker versions prior to 25.0.78
Looker versions prior to 25.6.65
Looker versions prior to 25.8.47
Looker versions prior to 25.12.10
Looker versions prior to 25.14
Description
A Looker user with a Developer role could potentially cause Looker to execute a malicious command. This is due to insecure processing of Teradata driver parameters. Both Looker-hosted and Self-hosted instances were found to be affected. The issue has been mitigated for Looker-hosted instances, requiring no user action. The issue involves the processing of parameters within the Teradata driver, potentially allowing for command execution.
Recommendations
Upgrade to Looker version 24.12.108 or later.
Upgrade to Looker version 24.18.200 or later.
Upgrade to Looker version 25.0.78 or later.
Upgrade to Looker version 25.6.65 or later.
Upgrade to Looker version 25.8.47 or later.
Upgrade to Looker version 25.12.10 or later.
Upgrade to Looker version 25.14 or later.
Fix
RCE
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Looker