CVE-2025-12744

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Fedora versions 43 and earlier

Description A flaw exists in the ABRT daemon's handling of user-supplied mount information. The process copies up to 12 characters from an untrusted input and places them directly into a shell command "docker inspect %s" without proper validation. This allows an unprivileged local user to inject shell metacharacters, leading to the execution of attacker-controlled commands by the root-running ABRT process and resulting in full root privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

LPE

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

ALSA-2025:22760

CVE-2025-12744

INFSA-2025_22760

RHSA-2025:22760

RHSA-2025:23030

RHSA-2025:23031

RHSA-2025:23032

RHSA-2025:23033

Affected Products

Abrt

Almalinux

Centos

Red Hat

Rocky Linux

CVE-2025-12744

Weakness Enumeration

Related Identifiers

Affected Products

References · 20