VDB
CVE-2025-3047
CVE-2025-3047
PUBLISHED
CVSS 6.900000095367432 MEDIUM
When running the AWS Serverless Application Model Command Line Interface (SAM CLI) build process with Docker and symlinks are included in the build files, the container environment allows a user to access privileged files on the host by leveraging the elevated permissions granted to the tool. A user could leverage the elevated permissions to access restricted files via symlinks and copy them to a more permissive location on the container. Users should upgrade to v1.133.0 or newer and ensure any forked or derivative code is patched to incorporate the new fixes.
EPSS 0.12% · 30.6th percentile
Risk Scores
CVSS 4.0
6.900000095367432
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
EPSS Score
0.12%
30.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| AWS | AWS Serverless Application Model Command Line Interface | 1.98.0 |
| PyPI | aws-sam-cli | 0 |
Exploit Intelligence
- Issue with AWS SAM CLI (CVE-2025-3047, CVE-2025-3048) (github-poc)
- Issue with AWS SAM CLI (CVE-2025-3047, CVE-2025-3048) (github-poc)
- Issue with AWS SAM CLI (CVE-2025-3047, CVE-2025-3048) (github-poc)
- Issue with AWS SAM CLI (CVE-2025-3047, CVE-2025-3048) (github-poc)
- Issue with AWS SAM CLI (CVE-2025-3047, CVE-2025-3048) (github-poc)
- Issue with AWS SAM CLI (CVE-2025-3047, CVE-2025-3048) (github-poc)
- Issue with AWS SAM CLI (CVE-2025-3047, CVE-2025-3048) (github-poc)
- Issue with AWS SAM CLI (CVE-2025-3047, CVE-2025-3048) (github-poc)
- CIRCL seen: CVE-2025-3047 (circl-sighting)
- CIRCL seen: CVE-2025-3047 (circl-sighting)
…and 5 more exploits
Timeline
- Mar 31, 2025 CVE Published
- Mar 31, 2025 Coalition ESS Score
- Mar 31, 2025 PoC Published
- Mar 31, 2025 PoC Published
- Mar 31, 2025 PoC Published
- Apr 1, 2025 EPSS Score
- Apr 3, 2025 PoC Published
- Apr 6, 2025 Coalition ESS Score
- Apr 14, 2025 EPSS Score
- Apr 27, 2025 EPSS Score
- May 10, 2025 EPSS Score
- May 23, 2025 EPSS Score
References
- https://aws.amazon.com/security/security-bulletins/AWS-2025-008/ vendor-advisory
- https://github.com/aws/aws-sam-cli/security/advisories/GHSA-px37-jpqx-97q9 third-party-advisory
- https://github.com/aws/aws-sam-cli/releases/tag/v1.134.0 patch
- https://nvd.nist.gov/vuln/detail/CVE-2025-3047 advisory
- https://github.com/aws/aws-sam-cli/pull/7865 url
- https://aws.amazon.com/security/security-bulletins/AWS-2025-008 url
- https://github.com/aws/aws-sam-cli package