Medium severity6.5NVD Advisory· Published Mar 4, 2026· Updated Apr 2, 2026
CVE-2025-12801
CVE-2025-12801
Description
A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exported directory, regardless of the set file permissions, and regardless of any 'root_squash' or 'all_squash' attributes that would normally be expected to apply to that client.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21- cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
- osv-coords13 versionspkg:rpm/almalinux/libnfsidmappkg:rpm/almalinux/libnfsidmap-develpkg:rpm/almalinux/nfs-utilspkg:rpm/almalinux/nfs-utils-coreospkg:rpm/almalinux/nfsv4-client-utilspkg:rpm/opensuse/libnfsidmap0&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/nfs-utils&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/libnfsidmap0&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/libnfsidmap0&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/libnfsidmap0&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/nfs-utils&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/nfs-utils&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/nfs-utils&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6
< 1:2.3.3-68.el8_10+ 12 more
- (no CPE)range: < 1:2.3.3-68.el8_10
- (no CPE)range: < 1:2.3.3-68.el8_10
- (no CPE)range: < 1:2.3.3-68.el8_10
- (no CPE)range: < 1:2.8.3-0.el10_1.3
- (no CPE)range: < 1:2.8.3-0.el10_1.3
- (no CPE)range: < 0.26-150600.28.19.1
- (no CPE)range: < 2.6.4-150600.28.19.1
- (no CPE)range: < 0.26-150600.28.19.1
- (no CPE)range: < 0.26-150600.28.19.1
- (no CPE)range: < 0.26-150600.28.19.1
- (no CPE)range: < 2.6.4-150600.28.19.1
- (no CPE)range: < 2.6.4-150600.28.19.1
- (no CPE)range: < 2.6.4-150600.28.19.1
Patches
Vulnerability mechanics
References
12- access.redhat.com/errata/RHSA-2026:3938nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2026:3939nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2026:3940nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2026:3941nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2026:3942nvdThird Party Advisory
- access.redhat.com/security/cve/CVE-2025-12801nvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- access.redhat.com/errata/RHSA-2026:5127nvd
- access.redhat.com/errata/RHSA-2026:5606nvd
- access.redhat.com/errata/RHSA-2026:5867nvd
- access.redhat.com/errata/RHSA-2026:5873nvd
- access.redhat.com/errata/RHSA-2026:5877nvd
News mentions
0No linked articles in our index yet.