CVE-2025-8067HIGH 8.5EPSS p46.3%

CVE-2025-8067CVE-2025-8067

Description

A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the loop device handler, which handles requests sent through the D-BUS interface. As two of the parameters of this handle, it receives the file descriptor list and index specifying the file where the loop device should be backed. The function itself validates the index value to ensure it isn't bigger than the maximum value allowed. However, it fails to validate the lower bound, allowing the index parameter to be a negative value. Under these circumstances, an attacker can cause the UDisks daemon to crash or perform a local privilege escalation by gaining access to files owned by privileged users.

Scoring

CVSS 3.18.5 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:H
EPSS0.65% probability of exploitation · percentile 46.3% · 2026-06-19T12:03:05Z
Published2025-08-28
Last modified2026-04-15

Underlying weaknesses· 1

CWE-125

References

  1. https://access.redhat.com/errata/RHSA-2025:15017
  2. https://access.redhat.com/errata/RHSA-2025:15018
  3. https://access.redhat.com/errata/RHSA-2025:15020
  4. https://access.redhat.com/errata/RHSA-2025:15956
  5. https://access.redhat.com/errata/RHSA-2025:16021
  6. https://access.redhat.com/errata/RHSA-2025:16090
  7. https://access.redhat.com/errata/RHSA-2025:16106
  8. https://access.redhat.com/errata/RHSA-2025:16121

1

TypeTargetConfidenceTier
WeaknessOut-of-bounds Readcwe-1250%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-1127
CVE
CVE-2026-40409
CVE
Linux Kernel Out-of-Bounds Access Vulnerability
CVE
CVE-2026-40404
CVE
CVE-2026-0067
CVE
CVE-2026-0080
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.