CVE-2025-45311
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-11-26
Last updated on: 2025-12-03
Assigner: MITRE
Description
Description
Insecure permissions in fail2ban-client v0.11.2 allows attackers with limited sudo privileges to perform arbitrary operations as root. NOTE: this is disputed by multiple parties because the action for a triggered rule can legitimately be an arbitrary operation as root. Thus, the software is behaving in accordance with its intended privilege model.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| fail2ban | fail2ban | 0.11.2 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-266 | A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves insecure permissions in fail2ban-client version 0.11.2, which allows attackers who have limited sudo privileges to execute arbitrary operations with root-level access.
How can this vulnerability impact me? :
An attacker exploiting this vulnerability could escalate their privileges from limited sudo access to full root access, potentially compromising the entire system and performing unauthorized actions.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70