VDB
CVE-2025-6018
CVE-2025-6018
PUBLISHED
openSUSE ist eine Linux-Distribution, die auf SUSE Linux Enterprise Server basiert. SUSE Linux ist eine Linux-Distribution bzw. Open Source Plattform.
EPSS 0.09% · 25.6th percentile
Risk Scores
EPSS Score
0.09%
25.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | Red Hat Enterprise Linux | |
| SUSE | SUSE openSUSE | |
| Ubuntu | Ubuntu Linux | |
| SUSE | SUSE Linux | |
| SUSE | SUSE openSUSE <=Leap 15 | |
| Amazon | Amazon Linux 2 | |
| Gentoo | Gentoo Linux | |
| Open Source | Open Source Arch Linux | |
| Oracle | Oracle Linux | |
| SUSE | SUSE Linux <=Enterprise 15 | |
| Dell | Dell Secure Connect Gateway Appliance <5.32.00.18 | |
| Debian | Debian Linux |
Exploit Intelligence
- HackTheBox — Pterodactyl (Medium/Linux) walkthrough. CVE-2025-49132 LFI → pearcmd RCE → bcrypt crack → SSH. Privesc via CVE-2025-6018 (PAM pam_environment bypass) + CVE-2025-6019 (udisks2 XFS resize race condition, nosuid bypass) → root. Full notes and steps included. (github-poc-repo)
- HackTheBox — Pterodactyl (Medium/Linux) walkthrough. CVE-2025-49132 LFI → pearcmd RCE → bcrypt crack → SSH. Privesc via CVE-2025-6018 (PAM pam_environment bypass) + CVE-2025-6019 (udisks2 XFS resize race condition, nosuid bypass) → root. Full notes and steps included. (github-poc-repo)
- HackTheBox — Pterodactyl (Medium/Linux) walkthrough. CVE-2025-49132 LFI → pearcmd RCE → bcrypt crack → SSH. Privesc via CVE-2025-6018 (PAM pam_environment bypass) + CVE-2025-6019 (udisks2 XFS resize race condition, nosuid bypass) → root. Full notes and steps included. (github-poc-repo)
- HackTheBox — Pterodactyl (Medium/Linux) walkthrough. CVE-2025-49132 LFI → pearcmd RCE → bcrypt crack → SSH. Privesc via CVE-2025-6018 (PAM pam_environment bypass) + CVE-2025-6019 (udisks2 XFS resize race condition, nosuid bypass) → root. Full notes and steps included. (github-poc-repo)
- HackTheBox — Pterodactyl (Medium/Linux) walkthrough. CVE-2025-49132 LFI → pearcmd RCE → bcrypt crack → SSH. Privesc via CVE-2025-6018 (PAM pam_environment bypass) + CVE-2025-6019 (udisks2 XFS resize race condition, nosuid bypass) → root. Full notes and steps included. (github-poc-repo)
- HackTheBox — Pterodactyl (Medium/Linux) walkthrough. CVE-2025-49132 LFI → pearcmd RCE → bcrypt crack → SSH. Privesc via CVE-2025-6018 (PAM pam_environment bypass) + CVE-2025-6019 (udisks2 XFS resize race condition, nosuid bypass) → root. Full notes and steps included. (github-poc-repo)
- HackTheBox — Pterodactyl (Medium/Linux) walkthrough. CVE-2025-49132 LFI → pearcmd RCE → bcrypt crack → SSH. Privesc via CVE-2025-6018 (PAM pam_environment bypass) + CVE-2025-6019 (udisks2 XFS resize race condition, nosuid bypass) → root. Full notes and steps included. (github-poc-repo)
- HackTheBox — Pterodactyl (Medium/Linux) walkthrough. CVE-2025-49132 LFI → pearcmd RCE → bcrypt crack → SSH. Privesc via CVE-2025-6018 (PAM pam_environment bypass) + CVE-2025-6019 (udisks2 XFS resize race condition, nosuid bypass) → root. Full notes and steps included. (github-poc-repo)
- This is just a quick note on how to exploit these vulnerabilities to get root. (github-poc-repo)
- This is just a quick note on how to exploit these vulnerabilities to get root. (github-poc-repo)
…and 304 more exploits
Timeline
- Jun 17, 2025 PoC Published
- Jun 17, 2025 CVE Published
- Jun 18, 2025 PoC Published
- Jun 18, 2025 PoC Published
- Jun 18, 2025 PoC Published
- Jun 18, 2025 PoC Published
- Jun 18, 2025 PoC Published
- Jun 18, 2025 PoC Published
- Jun 18, 2025 PoC Published
- Jun 18, 2025 PoC Published
- Jun 18, 2025 PoC Published
- Jun 18, 2025 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1354.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1354 advisory
- https://blog.qualys.com/vulnerabilities-threat-research/2025/06/17/qualys-tru-uncovers-chained-lpe-suse-15-pam-to-full-root-via-libblockdev-udisks advisory
- https://cdn2.qualys.com/2025/06/17/suse15-pam-udisks-lpe.txt advisory
- https://seclists.org/oss-sec/2025/q2/261 advisory
- https://seclists.org/oss-sec/2025/q2/262 advisory
- https://www.openwall.com/lists/oss-security/2025/06/17/5 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021585.html advisory
- https://lists.debian.org/debian-security-announce/2025/msg00107.html advisory
- https://ubuntu.com/security/notices/USN-7578-2 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021579.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021575.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021563.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021564.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021565.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021566.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021567.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021586.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021587.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021597.html advisory
…and 32 more