Local Privilege Escalation in Datadog Linux Host Agent by Datadog
CVE-2025-61667

7HIGH

Key Information:

Vendor: Datadog
Status: Datadog-agent
Vendor: CVE Published:; 12 November 2025

What is CVE-2025-61667?

The Datadog Linux Host Agent, specifically in versions 7.65.0 through 7.70.2, contains a vulnerability due to improper permissions set on the installation directory. This flaw allows a local attacker with limited privileges to modify files within the opt/datadog-agent/python-scripts/__pycache__ directory. When the Agent is upgraded, the modified code may execute, leading to local privilege escalation. The vulnerability is only relevant to the Linux Host Agent; other agent types such as container, Kubernetes, or Windows versions remain unaffected. The issue has been addressed in version 7.71.0.

Affected Version(s)

datadog-agent >= 7.65.0 , < 7.71.0

References

https://github.com/DataDog/datadog-agent/security/advisor...

x_refsource_CONFIRM

CVSS V4

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2025
Vulnerability Reserved
Sep 29, 2025

JSON