Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/04/17 8:14 p.m.25 views

CVE-2025-32438

make-initrd-ng is a tool for copying binaries and their dependencies. Local privilege escalation affecting all NixOS users. With systemd.shutdownRamfs.enable enabled the default a local user is able to create a program that will be executed by root during shutdown. Patches exist for NixOS 24.11 a...

8.8CVSS7.1AI score0.00174EPSS
Exploits0References1
Circl
Circl
added 2025/04/15 10:48 p.m.23 views

CVE-2025-32438

creationtimestamp| type| source ---|---|--- 2025-04-15 22:48:40+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114344414786383468 2025-04-16 00:08:27+00:00| seen| https://t.me/cvedetector/23010 2025-04-16 00:23:16+00:00| seen|...

8.8CVSS4.8AI score0.00174EPSS
Exploits0References4
NVD
NVD
added 2025/04/15 8:15 p.m.46 views

CVE-2025-32438

make-initrd-ng is a tool for copying binaries and their dependencies. Local privilege escalation affecting all NixOS users. With systemd.shutdownRamfs.enable enabled the default a local user is able to create a program that will be executed by root during shutdown. Patches exist for NixOS 24.11 a...

8.8CVSS0.00174EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/15 7:57 p.m.43 views

CVE-2025-32438 Local privilege escalation in make-initrd-ng

make-initrd-ng is a tool for copying binaries and their dependencies. Local privilege escalation affecting all NixOS users. With systemd.shutdownRamfs.enable enabled the default a local user is able to create a program that will be executed by root during shutdown. Patches exist for NixOS 24.11 a...

8.8CVSS0.00174EPSS
Exploits0References3
CVE
CVE
added 2025/04/15 7:57 p.m.57 views

CVE-2025-32438

CVE-2025-32438 affects make-initrd-ng used on NixOS. A local user can escalate privileges by exploiting shutdown behavior when systemd.shutdownRamfs.enable is on (default). A program created by a low-privilege user can be executed by root during system shutdown, enabling total impact on confident...

8.8CVSS8.8AI score0.00174EPSS
Exploits0References3
OSV
OSV
added 2025/04/15 7:57 p.m.21 views

CVE-2025-32438 Local privilege escalation in make-initrd-ng

make-initrd-ng is a tool for copying binaries and their dependencies. Local privilege escalation affecting all NixOS users. With systemd.shutdownRamfs.enable enabled the default a local user is able to create a program that will be executed by root during shutdown. Patches exist for NixOS 24.11 a...

8.8CVSS7.8AI score0.00174EPSS
Exploits0References5
Rows per page
Query Builder