VDB
CVE-2025-48060
CVE-2025-48060
PUBLISHED
CVSS 8.699999809265137 HIGH
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
EPSS 0.59% · 69.5th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.59%
69.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amazon | Amazon Linux 2 | |
| Dell | Dell Secure Connect Gateway Appliance <5.32.00.18 | |
| Ubuntu | Ubuntu Linux | |
| RESF | RESF Rocky Linux | |
| Red Hat | Red Hat Enterprise Linux 9 | |
| Red Hat | Red Hat OpenShift Container Platform <4.15.57 | |
| SUSE | SUSE Linux | |
| Phoenix Contact | Phoenix Contact FL MGUARD <1.8.1 | |
| Red Hat | Red Hat OpenShift Container Platform <4.16.45 | |
| Red Hat | Red Hat Enterprise Linux | |
| Red Hat | Red Hat OpenShift Container Platform <4.18.21 | |
| Oracle | Oracle Linux |
Exploit Intelligence
- Backported the upstream fix for CVE-2025-48060 (heap buffer overflow in jv_string_empty) to jq 1.6. (github-poc)
- Backported the upstream fix for CVE-2025-48060 (heap buffer overflow in jv_string_empty) to jq 1.6. (github-poc)
- Backported the upstream fix for CVE-2025-48060 (heap buffer overflow in jv_string_empty) to jq 1.6. (github-poc)
- Backported the upstream fix for CVE-2025-48060 (heap buffer overflow in jv_string_empty) to jq 1.6. (github-poc)
- Backported the upstream fix for CVE-2025-48060 (heap buffer overflow in jv_string_empty) to jq 1.6. (github-poc)
- Backported the upstream fix for CVE-2025-48060 (heap buffer overflow in jv_string_empty) to jq 1.6. (github-poc)
- Backported the upstream fix for CVE-2025-48060 (heap buffer overflow in jv_string_empty) to jq 1.6. (github-poc)
- Backported the upstream fix for CVE-2025-48060 (heap buffer overflow in jv_string_empty) to jq 1.6. (github-poc)
- Backported the upstream fix for CVE-2025-48060 (heap buffer overflow in jv_string_empty) to jq 1.6. (github-poc)
- https://github.com/jqlang/jq/security/advisories/GHSA-p7rr-28xf-3m5w (cve.org)
…and 9 more exploits
Timeline
- CVE Published
- May 22, 2025 EPSS Score
- Jun 2, 2025 EPSS Score
- Jun 13, 2025 EPSS Score
- Jun 24, 2025 EPSS Score
- Jul 6, 2025 EPSS Score
- Jul 17, 2025 EPSS Score
- Jul 28, 2025 EPSS Score
- Aug 8, 2025 EPSS Score
- Aug 19, 2025 EPSS Score
- Aug 30, 2025 EPSS Score
- Sep 10, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1480.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1480 advisory
- https://access.redhat.com/errata/RHSA-2025:10585 advisory
- https://access.redhat.com/errata/RHSA-2025:10619 advisory
- https://access.redhat.com/errata/RHSA-2025:10621 advisory
- https://linux.oracle.com/errata/ELSA-2025-10585.html advisory
- https://access.redhat.com/errata/RHSA-2025:10613 advisory
- https://access.redhat.com/errata/RHSA-2025:10615 advisory
- https://access.redhat.com/errata/RHSA-2025:10616 advisory
- https://access.redhat.com/errata/RHSA-2025:10618 advisory
- https://access.redhat.com/errata/RHSA-2025:10620 advisory
- https://access.redhat.com/errata/RHSA-2025:10622 advisory
- https://linux.oracle.com/errata/ELSA-2025-10618.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-July/021863.html advisory
- https://ubuntu.com/security/notices/USN-7657-1 advisory
- https://access.redhat.com/errata/RHSA-2025:11363 advisory
- https://ubuntu.com/security/notices/USN-7657-2 advisory
- https://access.redhat.com/errata/RHSA-2025:11681 advisory
- https://access.redhat.com/errata/RHSA-2025:11677 advisory
- https://alas.aws.amazon.com/AL2/ALAS2-2025-2943.html advisory
…and 15 more