CVE-2025-53882

A Reliance on Untrusted Inputs in a Security Decision vulnerability in the logrotate configuration for openSUSEs mailman3 package allows potential escalation from mailman to root. This issue affects openSUSE Tumbleweed: from ? before 3.3.10-2.1.

CVSS v3 9.1 CRITICAL

9.1^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-53882

Configurations

No configuration.

History

24 Jul 2025, 07:15

Type	Values Removed	Values Added
Summary	(en) A Reliance on Untrusted Inputs in a Security Decision vulnerability in the logrotate configuration for openSUSEs mailman3 package allows potential escalation from mailman to rootThis issue affects openSUSE Tumbleweed: from ? before 3.3.10-2.1.	(en) A Reliance on Untrusted Inputs in a Security Decision vulnerability in the logrotate configuration for openSUSEs mailman3 package allows potential escalation from mailman to root. This issue affects openSUSE Tumbleweed: from ? before 3.3.10-2.1.

23 Jul 2025, 19:15

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.1

23 Jul 2025, 10:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-23 10:15

Updated : 2025-07-25 15:29

NVD link : CVE-2025-53882

Mitre link : CVE-2025-53882

CVE.ORG link : CVE-2025-53882

JSON object : View

Products Affected

No product.

CWE

CWE-807

Reliance on Untrusted Inputs in a Security Decision

9.1 /10