CLSA-2026-1773311565 nfs-utils: Fix of CVE-2025-12801

CVE-2025-12801: fix rpc.mountd privilege escalation allowing NFSv3 clients to bypass rootsquash and allsquash when mounting subdirectories...

SUSE CVE-2025-12801

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exporte...

CLSA-2026-1773224214 nfs-utils: Fix of CVE-2025-12801

CVE-2025-12801: fix rpc.mountd privilege escalation allowing NFSv3 clients to bypass rootsquash and allsquash when mounting subdirectories...

nfs-utils: rpc.mountd in the nfs-utils privilege escalation

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exporte...

DEBIAN-CVE-2025-12801

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exporte...

CVE-2025-12801

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exporte...

UBUNTU-CVE-2025-12801

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exporte...

CVE-2025-12801

The CVE-2025-12801 issue affects the rpc.mountd daemon in the linux nfs-utils package. Affected component: rpc.mountd (NFSv3 context) in nfs-utils. Root cause/impact: a NFSv3 client can escalate privileges granted to it in the /etc/exports at mount time, enabling access to any subdirectory or sub...

CVE-2025-12801

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exporte...

PT-2026-22929

Name of the Vulnerable Software and Affected Versions nfs-utils affected versions not specified Description A flaw exists in the rpc.mountd daemon within the nfs-utils package for Linux. This issue allows a Network File System version 3 NFSv3 client to gain higher privileges than those defined in...

Linux Distros Unpatched Vulnerability : CVE-2018-20871

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Univa Grid Engine before 8.6.3, when configured for Docker jobs and execd spooling on rootsquash, weak file permissions other write access occur in certain...

PT-2024-25928 · Fog · Fog

Name of the Vulnerable Software and Affected Versions: FOG versions 1.5.10 and earlier Description: The issue allows local users to gain privileges by mounting a crafted NFS share due to the lack of no root squash and insecure settings. To exploit this, an attacker must mount an NFS share and add...

SUSE CVE-2009-1072

nfsd in the Linux kernel before 2.6.28.9 does not drop the CAPMKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the rootsquash option...

SUSE CVE-2015-5247

The virStorageVolCreateXML API in libvirt 1.2.14 through 1.2.19 allows remote authenticated users with a read-write connection to cause a denial of service libvirtd crash by triggering a failed unlink after creating a volume on a rootsquash NFS pool...

SUSE CVE-2018-1000028

Linux kernel version after commit bdcf0a423ea1 - 4.15-rc4+, 4.14.8+, 4.9.76+, 4.4.111+ contains a Incorrect Access Control vulnerability in NFS server nfsd that can result in remote users reading or writing files they should not be able to via NFS. This attack appear to be exploitable via NFS...

CVE-2018-20871

In Univa Grid Engine before 8.6.3, when configured for Docker jobs and execd spooling on rootsquash, weak file permissions "other" write access occur in certain cases GE-6890...

UBUNTU-CVE-2018-20871

In Univa Grid Engine before 8.6.3, when configured for Docker jobs and execd spooling on rootsquash, weak file permissions "other" write access occur in certain cases GE-6890...

CVE-2016-0911

EMC Data Domain OS 5.4 through 5.7 before 5.7.2.0 has a default norootsquash option for NFS exports, which makes it easier for remote attackers to obtain filesystem access by leveraging client root privileges...

EMC Data Domain Insecure NFS Load Option Vulnerability

EMC Data Domain systems are data protection storage solutions. EMC Data Domain versions 5.4, 5.5, 5.6, and 5.7 have a security vulnerability that enables an administrator user to create NFS exports, and the default use of norootsquash also enables clients to load NFS exports with root privileges...

The vulnerability of the virtualization management library libvirt allows a attacker to trigger a service failure.

The vulnerability of the virStorageVolCreateXML program in the virtualization management library libvirt is related to lack of access control. Exploiting this vulnerability could allow a malicious actor to cause a service failure abrupt termination of operations by triggering a disconnected...