CVE-2025-4802

CWE-42610 documents9 sources
Severity
7.8HIGH
EPSS
0.0%
top 86.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
THE GNU C Library GlibcGNU Glibc
Timeline
PublishedMay 16
Latest updateOct 15

Description

Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library in statically compiled setuid binaries that call dlopen (including internal dlopen calls after setlocale or calls to NSS functions such as getaddrinfo).

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

CVEListV5the_gnu_c_library/glibc2.272.39
Debianglibc< 2.31-13+deb11u13+3
NVDgnu/glibc2.272.38

Patches

Patch: sourceware.org

🔴Vulnerability Details

3
GHSA
GHSA-8mm9-c4mg-vfjh: Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 22025-05-16
CVEList
CVE-2025-4802: Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 22025-05-16
OSV
CVE-2025-4802: Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 22025-05-16

📋Vendor Advisories

6
Oracle
Oracle Oracle Communications Risk Matrix: Install (FreeType) — CVE-2025-48022025-10-15
Oracle
Oracle Oracle Communications Risk Matrix: Configuration (glibc) — CVE-2025-48022025-07-15
Ubuntu
GNU C Library vulnerability2025-05-28
Red Hat
glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH2025-05-16
Microsoft
Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library in statically compiled setuid bi2025-05-13
CVE-2025-4802 (HIGH CVSS 7.8) | Untrusted LD_LIBRARY_PATH environme | cvebase.io