Improper File Permissions in Foreman/Red Hat Satellite Exposing Sensitive Data
CVE-2025-2157

3.3LOW

Key Information:

Vendor: Red Hat
Status: Satellite Server; Red Hat Satellite 6
Vendor: CVE Published:; 15 March 2025

What is CVE-2025-2157?

A vulnerability in Foreman/Red Hat Satellite allows low-privileged OS users to access and monitor temporary files located in /var/tmp, which may contain sensitive command outputs, including usernames and hashed passwords from files like /etc/shadow. This flaw could potentially lead to unauthorized information disclosure and facilitate privilege escalation, presenting significant security risks for impacted systems.

Affected Version(s)

Satellite Server 6.16

Satellite Server 6.17

References

https://access.redhat.com/security/cve/CVE-2025-2157

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2351092

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 15, 2025
Vulnerability Reserved
Mar 10, 2025

Credit

Red Hat would like to thank Fabian Würfl (SEC Consult Vulnerability Lab) for reporting this issue.