rpm package
almalinux/abrt-cli-ng
pkg:rpm/almalinux/abrt-cli-ng
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-12744 | Hig | 8.8 | < 2.10.9-25.el8_10.alma.1 | 2.10.9-25.el8_10.alma.1 | Dec 3, 2025 | A flaw was found in the ABRT daemon’s handling of user-supplied mount information.ABRT copies up to 12 characters from an untrusted input and places them directly into a shell command (docker inspect %s) without proper validation. An unprivileged local user can craft a payload th |
- affected < 2.10.9-25.el8_10.alma.1fixed 2.10.9-25.el8_10.alma.1
A flaw was found in the ABRT daemon’s handling of user-supplied mount information.ABRT copies up to 12 characters from an untrusted input and places them directly into a shell command (docker inspect %s) without proper validation. An unprivileged local user can craft a payload th