CVE-2025-12381

Improper Privilege Management vulnerability in AlgoSec Firewall Analyzer on Linux, 64 bit allows Privilege Escalation, Parameter Injection. A local user with access to the command line may escalate their privileges by abusing the parameters of a command that is approved in the sudoers file. This issue affects Firewall Analyzer: A33.0, A33.10.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://techdocs.algosec.com/en/cves/Content/tech-notes/cves/cve-2025-12381.htm	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:algosec:firewall_analyzer:a33.0:::::::*
	cpe:2.3:a:algosec:firewall_analyzer:a33.10:::::::*

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:x64:*

History

17 Dec 2025, 14:51

Type	Values Removed	Values Added
References	~~() https://techdocs.algosec.com/en/cves/Content/tech-notes/cves/cve-2025-12381.htm -~~	() https://techdocs.algosec.com/en/cves/Content/tech-notes/cves/cve-2025-12381.htm - Vendor Advisory
First Time		Algosec firewall Analyzer Linux Algosec Linux linux Kernel
CPE		cpe:2.3:a:algosec:firewall_analyzer:a33.0:::::::* cpe:2.3:o:linux:linux_kernel:-::::::x64: cpe:2.3:a:algosec:firewall_analyzer:a33.10:::::::*
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8
CWE		NVD-CWE-noinfo

09 Dec 2025, 16:17

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-12-09 16:17

Updated : 2025-12-17 14:51

NVD link : CVE-2025-12381

Mitre link : CVE-2025-12381

CVE.ORG link : CVE-2025-12381

JSON object : View

Products Affected

algosec

firewall_analyzer

linux

linux_kernel

CWE

CWE-269

Improper Privilege Management

NVD-CWE-noinfo

{"id": "CVE-2025-12381", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}], "cvssMetricV40": [{"type": "Secondary", "source": "security.vulnerabilities@algosec.com", "cvssData": {"Safety": "NEGLIGIBLE", "version": "4.0", "Recovery": "USER", "baseScore": 6.1, "Automatable": "YES", "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:L/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:U/V:X/RE:L/U:Amber", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "AMBER", "userInteraction": "ACTIVE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "LOW", "subIntegrityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "HIGH", "vulnConfidentialityImpact": "LOW", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "LOW", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2025-12-09T16:17:33.910", "references": [{"url": "https://techdocs.algosec.com/en/cves/Content/tech-notes/cves/cve-2025-12381.htm", "tags": ["Vendor Advisory"], "source": "security.vulnerabilities@algosec.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security.vulnerabilities@algosec.com", "description": [{"lang": "en", "value": "CWE-269"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Improper Privilege Management vulnerability in AlgoSec Firewall Analyzer on Linux, 64 bit allows\u00a0Privilege Escalation, Parameter Injection.\n\nA local user with access to the command line may escalate their privileges by abusing the parameters of a command that is approved in the sudoers file.\u00a0\nThis issue affects Firewall Analyzer: A33.0, A33.10."}], "lastModified": "2025-12-17T14:51:27.253", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:algosec:firewall_analyzer:a33.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D08D419-4FB4-480F-9507-B88892A36C18"}, {"criteria": "cpe:2.3:a:algosec:firewall_analyzer:a33.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB242B1A-5829-41C8-B92D-B9F1374B8CC9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:x64:*", "vulnerable": false, "matchCriteriaId": "71BFBE5F-56EB-45C9-B558-FC4D7CEA345A"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "security.vulnerabilities@algosec.com"}