CVE-2025-24005 Local Privilege Escalation via Vulnerable SSH Script

🗓️ 08 Jul 2025 06:59:45Reported by CERTVDEType

Local attacker can use vulnerable SSH script to escalate privileges to root due to input validation issues

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2025-24005	8 Jul 202507:08	–	circl
CNNVD	PHOENIX CONTACT CHARX SEC 输入验证错误漏洞	8 Jul 202500:00	–	cnnvd
CVE	CVE-2025-24005	8 Jul 202506:59	–	cve
EUVD	EUVD-2025-20406	3 Oct 202520:07	–	euvd
NVD	CVE-2025-24005	8 Jul 202507:15	–	nvd
OSV	CVE-2025-24005	8 Jul 202507:15	–	osv
Positive Technologies	PT-2025-28343 · Phoenix Contact · Charx Sec-3000 +7	8 Jul 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-24005	10 Jul 202507:24	–	redhatcve
Vulnrichment	CVE-2025-24005 Local Privilege Escalation via Vulnerable SSH Script	8 Jul 202506:59	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "CHARX SEC-3150",
    "vendor": "Phoenix Contact",
    "versions": [
      {
        "lessThan": "1.7.3",
        "status": "affected",
        "version": "0.0.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "CHARX SEC-3100",
    "vendor": "Phoenix Contact",
    "versions": [
      {
        "lessThan": "1.7.3",
        "status": "affected",
        "version": "0.0.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "CHARX SEC-3050",
    "vendor": "Phoenix Contact",
    "versions": [
      {
        "lessThan": "1.7.3",
        "status": "affected",
        "version": "0.0.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "CHARX SEC-3000",
    "vendor": "Phoenix Contact",
    "versions": [
      {
        "lessThan": "1.7.3",
        "status": "affected",
        "version": "0.0.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
certvde	www.certvde.com/de/advisories/VDE-2025-014

08 Jul 2025 06:59Current

CVSS 3.17.8

EPSS0.00069

CWE-20