What is the CVSS score of EUVD-2025-200735?

EUVD-2025-200735 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Docker are affected by EUVD-2025-200735?

CVE-2025-12744 is a critical privilege escalation vulnerability in ABRT daemon that allows unprivileged local users to execute arbitrary commands as root.. A patch is available.

Is there a public PoC exploit available for EUVD-2025-200735?

Yes, a public proof-of-concept exploit is available for EUVD-2025-200735. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate EUVD-2025-200735?

Within 24 hours: Identify all systems running ABRT daemon and assess exposure to local user access; disable ABRT if operationally feasible or restrict daemon permissions. Within 7 days: Implement compensating controls including disabling docker inspect functionality in ABRT, applying file permission restrictions to mount information sources, and monitoring for exploitation attempts. Within 30 days: Establish continuous monitoring for vendor patch availability and prepare immediate deployment procedures; conduct security audit of affected systems for signs of compromise.

Docker EUVD-2025-200735

| CVE-2025-12744 HIGH

OS Command Injection (CWE-78)

2025-12-03 patrick@puiterwijk.org

Docker Command Injection Red Hat Suse

8.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

8.8 HIGH

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

SUSE

HIGH

qualitative

Red Hat

8.8 HIGH

qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

EUVD ID Assigned

Mar 15, 2026 - 16:14 euvd

EUVD-2025-200735

Analysis Generated

Mar 15, 2026 - 16:14 vuln.today

CVE Published

Dec 03, 2025 - 09:15 nvd

HIGH 8.8

DescriptionCVE.org

A flaw was found in the ABRT daemon’s handling of user-supplied mount information.ABRT copies up to 12 characters from an untrusted input and places them directly into a shell command (docker inspect %s) without proper validation. An unprivileged local user can craft a payload that injects shell metacharacters, causing the root-running ABRT process to execute attacker-controlled commands and ultimately gain full root privileges.

Analysis

Technical ContextAI

Command injection allows an attacker to execute arbitrary OS commands on the host system through a vulnerable application that passes user input to system shells. This vulnerability is classified as OS Command Injection (CWE-78).

RemediationAI

Avoid passing user input to system commands. Use language-specific APIs instead of shell commands. If unavoidable, use strict input validation and escaping.

More from same product – last 7 days

CVE-2026-48039 CRITICAL Act Now POC

9.1 Jun 11

Unauthenticated remote attackers can invoke MCP tool handlers and exfiltrate the operator's long-lived Meta Graph API ac

CVE-2026-53753 CRITICAL Act Now

9.8 Jun 16

Unauthenticated remote code execution in Crawl4AI versions <= 0.8.6 allows attackers to escape the AST-based sandbox in

CVE-2026-47172 CRITICAL Act Now

9.5 Jun 11

Privileged GitHub Actions workflow injection in Quest Bot (Discord moderation bot) prior to version 1.0.3 allows remote

CVE-2026-47174 CRITICAL Act Now

9.5 Jun 11

Production deployment compromise in Duck Site before 1.0.1 allows remote attackers to push attacker-controlled code as t

CVE-2026-53755 HIGH This Week

8.6 Jun 16

Server-side request forgery in Crawl4AI's Docker API server (versions <= 0.8.8) allows unauthenticated remote attackers

Vendor StatusVendor

SUSE

Severity: High

Product	Status
SUSE Liberty Linux 8	Fixed

EUVD-2025-200735 vulnerability details – vuln.today

Back

Docker EUVD-2025-200735

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

Analysis

Technical ContextAI

RemediationAI

More from same product – last 7 days

Vendor StatusVendor

SUSE

Share

External POC / Exploit Code