CVE-2025-67508HIGH 8.4EPSS p10.4%

CVE-2025-67508CVE-2025-67508

Description

gardenctl is a command-line client for the Gardener which configures access to clusters and cloud provider CLI tools. When using non‑POSIX shells such as Fish and PowerShell, versions 2.11.0 and below of gardenctl allow an attacker with administrative privileges for a Gardener project to craft malicious credential values. The forged credential values are used in infrastructure Secret objects that break out of the intended string context when evaluated in Fish or PowerShell environments used by the Gardener service operators. This issue is fixed in version 2.12.0.

Scoring

CVSS 3.18.4 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
EPSS0.20% probability of exploitation · percentile 10.4% · 2026-06-19T12:03:05Z
Published2025-12-12
Last modified2026-03-17

Underlying weaknesses· 1

CWE-77

References

  1. https://github.com/gardener/gardenctl-v2/security/advisories/GHSA-fw33-qpx7-rhx2

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements used in a Command ('Command Injection')cwe-770%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-47283
CVE
CVE-2025-47284
CVE
CVE-2025-59823
CVE
CVE-2025-47282
CVE
CVE-2025-69902
CVE
CVE-2025-6724
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.