Linux Distros Unpatched Vulnerability : CVE-2024-12718

🗓️ 05 Aug 2025 00:00:00Reported by TenableType

Linux Distros have unpatched CVE-2024-12718 vulnerability allowing unauthorized file metadata changes.

Reporter	Title	Published	Views	Family All 307
IBM Security Bulletins	Security Bulletin: AIX/VIOS is affected by arbitrary code execution (CVE-2025-47273, CVE-2025-4330, CVE-2024-12718, CVE-2025-4138, CVE-2025-4517) due to Python	20 Aug 202515:03	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities due to libxml2, python3, pam and glibc packages shipped with IBM CICS TX Advanced.	12 Aug 202511:56	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Observability with Instana (OnPrem)	21 Oct 202514:44	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities due to libxml2, python3, pam and glibc packages shipped with IBM CICS TX Standard.	12 Aug 202511:48	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities discovered in RedHat UBI as shipped with IBM Security Verify Directory Server Container	8 Aug 202517:17	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Instana Observability is affected by multiple vulnerabilities within Instana Agent container image	31 Jul 202514:24	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a path traversal in Python [CVE-2024-12718]	17 Dec 202514:08	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities due to libxml2, python3 and pam packages shipped with TXSeries for Multiplatforms.	12 Aug 202511:41	–	ibm
GithubExploit	Exploit for CVE-2025-4138	15 Feb 202608:28	–	githubexploit
Tenable Nessus	Amazon Linux 2023 : python3.12, python3.12-devel, python3.12-idle (ALAS2023-2025-1044)	23 Jun 202500:00	–	nessus

Source	Link
security-tracker	www.security-tracker.debian.org/tracker/CVE-2024-12718
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(243703);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/11/03");

  script_cve_id("CVE-2024-12718");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2024-12718");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - Allows modifying some file metadata (e.g. last modified) with filter=data or file permissions (chmod)
    with filter=tar of files outside the extraction directory. You are affected by this vulnerability if
    using the tarfile module to extract untrusted tar archives using TarFile.extractall() or TarFile.extract()
    using the filter= parameter with a value of data or tar. See the tarfile extraction filters
    documentation https://docs.python.org/3/library/tarfile.html#tarfile-extraction-filter for more
    information. Only Python versions 3.12 or later are affected by these vulnerabilities, earlier versions
    don't include the extraction filter feature. Note that for Python 3.14 or later the default value of
    filter= changed from no filtering to `data, so if you are relying on this new default behavior then
    your usage is also affected. Note that none of these vulnerabilities significantly affect the installation
    of source distributions which are tar archives as source distributions already allow arbitrary code
    execution during the build process. However when evaluating source distributions it's important to avoid
    installing source distributions with suspicious links. (CVE-2024-12718)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2024-12718");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-12718");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/06/03");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/05");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:12.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:13.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:pypy3");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/Debian Linux-12", "Host/OS/Debian Linux-13");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Debian Linux-12": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "12",
        "pkgs": [
          {"reference": "pypy3"},
          {"reference": "pypy3-dev"},
          {"reference": "pypy3-doc"},
          {"reference": "pypy3-lib"},
          {"reference": "pypy3-lib-testsuite"},
          {"reference": "pypy3-tk"},
          {"reference": "pypy3-venv"}
        ]
      }
    ]
  },
  "Debian Linux-13": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "13",
        "pkgs": [
          {"reference": "pypy3"},
          {"reference": "pypy3-dev"},
          {"reference": "pypy3-doc"},
          {"reference": "pypy3-lib"},
          {"reference": "pypy3-lib-testsuite"},
          {"reference": "pypy3-tk"},
          {"reference": "pypy3-venv"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}

03 Nov 2025 00:00Current

7High risk

Vulners AI Score7

CVSS 3.15.3

EPSS0.0079

SSVC