🔴 严重 | CVE-2025-11919 — The default JVM can access files and directories u...
🔴 CVE-2025-11919
CVSS 评分: 9.6(严重) | 状态: Received | 发布时间: 2026-06-26
漏洞描述
The default JVM can access files and directories under /tmp/ including the $TemporaryDirectory of other users on the same cloud instance (/tmp/UserTemporaryFiles/). The -init file for the the JVM initialization exists in the vulnerable directory during the startup of the JVM. An attacker with access to the shared /tmp/ space can preemptively create or replace .jar files or directories (via the -init file) that the victim JVM will resolve first in its classpath. By strategically placing a malicious version of a commonly used library (e.g., commons-io) in a location that is included in the classpath before the legitimate version, an attacker can cause the JVM to load the malicious class during startup, thereby executing the attacker's code.
漏洞详情
| 字段 | 值 |
|---|---|
| CVE ID | CVE-2025-11919 |
| CVSS 评分 | 9.6(严重) |
| CVSS 向量 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N |
| 发布时间 | 2026-06-26 |
| 最后更新 | 2026-06-26 |
| 状态 | Received |
| 数据来源 | cret@cert.org |
参考链接
- https://github.com/PeterRoberge/vulnerability-wolfram-cloud-14.2/blob/main/disclosure.md
- https://www.kb.cert.org/vuls/id/553375
- https://github.com/PeterRoberge/vulnerability-wolfram-cloud-14.2/blob/main/disclosure.md
🤖 本文由 CVE 安全快讯机器人自动生成
数据来源: NVD (National Vulnerability Database) | 获取时间: 2026-06-27 03:07