CVE-2025-53882

Medium

A Reliance on Untrusted Inputs in a Security Decision vulnerability in the logrotate configuration for openSUSE mailman3 package allows the…

suse·CWE-807·Published 2025-07-23

CVSS

4.4

EPSS

0.00

KEV

Exploits

cve.orgen

257 chars

A Reliance on Untrusted Inputs in a Security Decision vulnerability in the logrotate configuration for openSUSE mailman3 package allows the mailman user to sent SIGHUP to arbitrary processes. This issue affects openSUSE Tumbleweed: from ? before 3.3.10-2.1.

NVDen

257 chars

NVDes

277 chars

Una vulnerabilidad de dependencia de entradas no confiables en una decisión de seguridad en la configuración de logrotate para el paquete openSUSEs mailman3 permite una posible escalada de mailman a root. Este problema afecta a openSUSE Tumbleweed: desde ? antes de 3.3.10-2.1.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	4.4	—	—	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
3.1	Secondary	NVD	4.4	1.8	2.5	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
4.0	Primary	cve.org	4.8	—	—	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
4.0	Secondary	NVD	4.8	—	—	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X