CNNVD-202512-411 Information

CNNVD ID

CNNVD-202512-411

Related CVE

CVE-2025-12744

• CNNVD Published: 2025-12-03

Description (Chinese)

Red Hat ABRT是美国Red Hat公司的一套帮助用户检测和报告应用程序崩溃的工具。 Red Hat ABRT存在安全漏洞，该漏洞源于处理用户提供的挂载信息时缺少验证，可能导致本地用户执行任意命令并获得root权限。

Description (English)

Red Hat ABRT is a United States Red Hat tool to help users detect and report the collapse of applications. Red Hat ABRT had a security loophole, which stemmed from a lack of authentication when processing mounted information provided by users, which could result in local users executing arbitrary orders and obtaining root privileges.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

红帽

Published

2025-12-03

Last Modified

2026-02-24

References

https://bugzilla.redhat.com/show_bug.cgi?id=2412467 https://access.redhat.com/security/cve/CVE-2025-12744 https://vigilance.fr/vulnerability/ABRT-privilege-escalation-via-Shell-Metacharacters-48992