CVE-2025-23196

Name of the Vulnerable Software and Affected Versions Ambari (affected versions not specified)

Description A code injection vulnerability exists in the Ambari Alert Definition feature, allowing authenticated users to inject and execute arbitrary shell commands. The vulnerability arises when defining alert scripts, where the script filename field is executed using sh -c. An attacker with authenticated access can exploit this vulnerability to inject malicious commands, leading to remote code execution on the server.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.