Privilege Escalation Vulnerability in systemd-coredump by Red Hat
CVE-2025-4598

4.7MEDIUM

Key Information:

Vendor

Red Hat
Status
Red Hat Enterprise Linux 10
Red Hat Enterprise Linux 7
Red Hat Enterprise Linux 8
Red Hat Enterprise Linux 9
Vendor
CVE Published:
30 May 2025

Badges

👾 Exploit Exists📰 News Worthy

What is CVE-2025-4598?

A vulnerability in systemd-coredump permits attackers to exploit a SUID process by inducing a crash and replacing it with a non-SUID binary. This manipulation creates a race condition that enables the attacker to access the original process's coredump, which may contain sensitive information like the /etc/shadow file. The flaw highlights the risks linked to SUID permissions as it allows unauthorized access to protected data, raising significant privacy concerns.

News Articles

favicon imageThe Hacker News

New Linux Flaws Allow Password Hash Theft via Core Dumps in Ubuntu, RHEL, Fedora

Linux vulnerabilities CVE-2025-5054 and CVE-2025-4598 let local attackers extract sensitive data via SUID core dumps.

12 hours ago

References

https://access.redhat.com/security/cve/CVE-2025-4598
vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2369242
issue-trackingx_refsource_REDHAT
https://www.openwall.com/lists/oss-security/2025/05/29/3

CVSS V3.1

Score:
4.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • 👾

    Exploit known to exist

  • 📰

    First article discovered by The Hacker News

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-4598 : Privilege Escalation Vulnerability in systemd-coredump by Red Hat