CVE-2025-67858
Unknown
Unknown - Not Provided
Improper Neutralization in Foomuuri JSON Causes Firewall Integrity Loss
Publication date: 2026-01-08
Last updated on: 2026-01-08
Assigner: SUSE
Description
Description
A Improper Neutralization of Argument Delimiters vulnerability in Foomuuri can lead to integrity loss of the firewall configuration or further unspecified impact by manipulating the JSON configuration passed to `nft`.
This issue affects Foomuuri: from ? before 0.31.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| foomuuri | foomuuri | From 0.31 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-88 | The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Improper Neutralization of Argument Delimiters in Foomuuri, which allows manipulation of the JSON configuration passed to the 'nft' tool. This can lead to loss of integrity of the firewall configuration or other unspecified impacts.
How can this vulnerability impact me? :
The vulnerability can cause loss of integrity in the firewall configuration, potentially allowing unauthorized changes or disruptions to firewall rules, which may compromise system security or stability.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70