CVE-2025-12744

🗓️ 03 Dec 2025 08:33:06Reported by fedoraType

cve🔗 web.nvd.nist.gov👁 23 Views🌐 WEB

ABRT daemon flaw lets local users inject shell commands via mount input to gain root.

Reporter	Title	Published	Views	Family All 51
Tenable Nessus	Alibaba Cloud Linux 3 : 0192: abrt (ALINUX3-SA-2025:0192)	15 Dec 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : abrt (ALSA-2025:22760)	10 Dec 202500:00	–	nessus
Tenable Nessus	Fedora 42 : abrt (2025-64091db7e0)	8 Dec 202500:00	–	nessus
Tenable Nessus	Fedora 43 : abrt (2025-ae1276a1c6)	8 Dec 202500:00	–	nessus
Tenable Nessus	Fedora 41 : abrt (2025-ed228a4b71)	9 Dec 202500:00	–	nessus
Tenable Nessus	MiracleLinux 8 : abrt-2.10.9-25.el8_10.ML.1 (AXSA:2025-11550:01)	13 Jan 202600:00	–	nessus
Tenable Nessus	Oracle Linux 8 : abrt (ELSA-2025-22760)	5 Dec 202500:00	–	nessus
Tenable Nessus	RHEL 8 : abrt (RHSA-2025:22760)	4 Dec 202500:00	–	nessus
Tenable Nessus	RHEL 8 : abrt (RHSA-2025:23030)	10 Dec 202500:00	–	nessus
Tenable Nessus	RHEL 8 : abrt (RHSA-2025:23031)	10 Dec 202500:00	–	nessus

[
  {
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "2.17.7",
        "versionType": "semver"
      }
    ],
    "packageName": "abrt",
    "collectionURL": "https://github.com/abrt/abrt",
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "abrt",
    "defaultStatus": "unknown",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "abrt",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "abrt",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  }
]

Source	Link
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/security/cve/CVE-2025-12744

Parameter	Position	Path	Description	CWE
mountinfo	path	/var/run/abrt/abrt.socket	Shell command injection via ABRT daemon using untrusted mountinfo to execute attacker-controlled commands	CWE-78

15 Apr 2026 00:35Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.18.8

EPSS0.0009

SSVC

CWE-78