EUVD-2025-198153

🗓️ 19 Nov 2025 12:30:21Reported by EUVDType

An attacker with a Looker Developer role could exploit a race condition during Git directory deletion to execute commands; self-hosted instances must upgrade to patched versions.

Reporter	Title	Published	Views	Family All 7
CNNVD	Google Cloud Looker 安全漏洞	19 Nov 202500:00	–	cnnvd
CVE	CVE-2025-12472	19 Nov 202510:27	–	cve
Cvelist	CVE-2025-12472 Remote Code Execution in Looker due to Improperly Validated Directory Deletion	19 Nov 202510:27	–	cvelist
NVD	CVE-2025-12472	19 Nov 202511:15	–	nvd
Positive Technologies	PT-2025-47449	19 Nov 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-12472	26 Nov 202516:56	–	redhatcve
Vulnrichment	CVE-2025-12472 Remote Code Execution in Looker due to Improperly Validated Directory Deletion	19 Nov 202510:27	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "11eed115-1396-3a9a-ae56-648a327a85a0",
        "vendor": {
          "name": "Google Cloud"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "033907d1-35fe-3c2a-aed3-73a206f900df",
        "product": {
          "name": "Looker"
        },
        "product_version": "0 <25.8.42"
      },
      {
        "id": "23653419-d446-31fe-a60d-15e372816310",
        "product": {
          "name": "Looker"
        },
        "product_version": "0 <25.0.72"
      },
      {
        "id": "6fefe6a6-fe36-334e-b6a5-0083c4fd9e08",
        "product": {
          "name": "Looker"
        },
        "product_version": "0 <24.12.103"
      },
      {
        "id": "d7847114-86a0-3975-bbf3-3d72e9d55cba",
        "product": {
          "name": "Looker"
        },
        "product_version": "0 <24.18.195"
      },
      {
        "id": "e38e4e4d-85dd-34c9-8baf-47c8f85fa441",
        "product": {
          "name": "Looker"
        },
        "product_version": "0 <25.10.22"
      },
      {
        "id": "f337780c-2e4b-334a-9621-f08fc59dc99d",
        "product": {
          "name": "Looker"
        },
        "product_version": "0 <25.6.60"
      }
    ]
  }
]

Source	Link
cloud	www.cloud.google.com/support/bulletins
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-12472

19 Nov 2025 12:30Current

6.7Medium risk

Vulners AI Score6.7

CVSS 47.1

EPSS0.00043

SSVC