Home > Vulnerability Database > CVE-2025-23196

Mend.io Vulnerability Database

CVE-2025-23196

Date: January 21, 2025

A code injection vulnerability exists in the Ambari Alert Definition feature, allowing authenticated users to inject and execute arbitrary shell commands. The vulnerability arises when defining alert scripts, where the script filename field is executed using "sh -c". An attacker with authenticated access can exploit this vulnerability to inject malicious commands, leading to remote code execution on the server. The issue has been fixed in the latest versions of Ambari.

Severity Score

8.8

Related Resources (4)

Url: https://lists.apache.org/thread/70g1l5lxvko7kvhyxmtmklhhfrlon837

Url: http://www.openwall.com/lists/oss-security/2025/01/21/8

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-23196

Url: https://www.mend.io/vulnerability-database/CVE-2025-23196

Severity Score

8.8

Weakness Type (CWE)

Improper Neutralization of Special Elements used in a Command ('Command Injection')

CWE-77

CVSS v3.1

Base Score:	8.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-23196

Date: January 21, 2025

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?