VDB

CVE-2025-3047

CVE-2025-3047 PUBLISHED CVSS 6.900000095367432 MEDIUM

When running the AWS Serverless Application Model Command Line Interface (SAM CLI) build process with Docker and symlinks are included in the build files, the container environment allows a user to access privileged files on the host by leveraging the elevated permissions granted to the tool. A user could leverage the elevated permissions to access restricted files via symlinks and copy them to a more permissive location on the container. Users should upgrade to v1.133.0 or newer and ensure any forked or derivative code is patched to incorporate the new fixes.

EPSS 0.12% · 30.6th percentile

Risk Scores

CVSS 4.0
6.900000095367432
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
EPSS Score
0.12%
30.6th percentile

Affected Products

VendorProductVersions
AWSAWS Serverless Application Model Command Line Interface1.98.0
PyPIaws-sam-cli0

Timeline

  • Mar 31, 2025 CVE Published
  • Mar 31, 2025 Coalition ESS Score
  • Mar 31, 2025 PoC Published
  • Mar 31, 2025 PoC Published
  • Mar 31, 2025 PoC Published
  • Apr 1, 2025 EPSS Score
  • Apr 3, 2025 PoC Published
  • Apr 6, 2025 Coalition ESS Score
  • Apr 14, 2025 EPSS Score
  • Apr 27, 2025 EPSS Score
  • May 10, 2025 EPSS Score
  • May 23, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›