5 matches found
VulnCheck KEV: CVE-2025-12548
A flaw was found in Eclipse Che che-machine-exec. This vulnerability allows unauthenticated remote arbitrary command execution and secret exfiltration SSH keys, tokens, etc. from other users' Developer Workspace containers, via an unauthenticated JSON-RPC / websocket API exposed on TCP port 3333...
CVE-2025-12548
creationtimestamp| type| source ---|---|--- 2026-01-13 18:13:22+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcd5t7r76g2f 2026-01-13 18:14:26+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcd5v4dvbv2v 2026-01-14 14:33:11+00:00| seen|...
Important: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.23.1 Release.
Red Hat OpenShift Dev Spaces 3.23.1 has been released. This release addresses CVE-2025-12548 'Eclipse Che — unauthenticated RCE and secret exfiltration via TCP/3333'...
Important: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.22.1 Release.
Red Hat OpenShift Dev Spaces 3.22.1 has been released. This release addresses CVE-2025-12548 'Eclipse Che — unauthenticated RCE and secret exfiltration via TCP/3333'...
CVE-2025-12548
No description is available for this CVE. Mitigation Apply the security best practices from the Red Hat OpenShift Dev Spaces Administration Guide: https://docs.redhat.com/en/documentation/redhatopenshiftdevspaces/3.24/html/administrationguide/security-best-practices...