AI description
CVE-2025-6018 is a local privilege escalation vulnerability found in the PAM configuration of certain Linux distributions, specifically openSUSE Leap 15 and SUSE Linux Enterprise 15. It allows an unprivileged local attacker, potentially through an SSH connection, to escalate their privileges to that of an "allow_active" user. This level of access then permits the attacker to perform actions normally reserved for users physically present at the console. This vulnerability can be chained with CVE-2025-6019 to achieve full root access. By exploiting CVE-2025-6018 to gain "allow_active" status, an attacker can then leverage CVE-2025-6019 (a vulnerability in libblockdev exploitable via the udisks daemon) to obtain root privileges.
- Description
- A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules (PAM). This flaw allows an unprivileged local attacker (for example, a user logged in via SSH) to obtain the elevated privileges normally reserved for a physically present, "allow_active" user. The highest risk is that the attacker can then perform all allow_active yes Polkit actions, which are typically restricted to console users, potentially gaining unauthorized control over system configurations, services, or other sensitive operations.
- Source
- secalert@redhat.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- secalert@redhat.com
- CWE-863
- Hype score
- Not currently trending
CVE-2025-6018 A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules (PAM). This flaw allows an unprivileged… https://t.co/a9Sa1YNG9j
@CVEnew
23 Jul 2025
328 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New Linux Bugs Let Hackers Gain Root: CVE-2025-6018 & 6019 https://t.co/1fhVzVCwWF by @sarthak_v2 via @CsharpCorner https://t.co/s6PezDnP5C
@harishchand314
10 Jul 2025
41 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-6018 y CVE-2025-6019 son vulnerabilidades de escalada de privilegios locales, presentes en los módulos de autenticación conectables (PAM) de SUSE. https://t.co/cGvTD9Z5cM #alertasdeciberseguridad #ataquesciberneticos #Ciberseguridad #Linux #proteccióntotal #CobraNetwo
@Cobra_Networks
25 Jun 2025
27 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Zeit für Patches. Lücke im PAM und in der Bibliothek libblockdev/udisks gibt den falschen Leuten Root-Rechte auf "major Linux Distros" (CVE-2025-6018) https://t.co/B3keGBOQS9
@johnnycache_
23 Jun 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Critical update for pam_pkcs11 (CVE-2025-6018, CVSS 8.6) patches a local auth bypass flaw. Patch via: zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2025-2032=1 Read more : 👉 https://t.co/XOMRd3aesq #LinuxSecurity https://t.co/exTQCCVSBS
@Cezar_H_Linux
21 Jun 2025
32 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
#exploit 1. CVE-2025-6018/6019: LPE from unprivileged to allow_active in *SUSE 15's PAM / to root in libblockdev via udisks - https://t.co/MXRzsR4oww 2. CVE-2025-33073: PoC Exploit for NTLM reflection SMB flaw - https://t.co/elnGe06QEq 3. CVE-2025-1087: Arbitrary code execution
@ksg93rd
20 Jun 2025
167 Impressions
0 Retweets
4 Likes
2 Bookmarks
0 Replies
0 Quotes
Reportadas vulnerabilidades críticas (CVE-2025-6018 y CVE-2025-6019) en los módulos PAM y UDisks que afectan a distribuciones Linux como SUSE, Ubuntu, Debian y Fedora. Estas fallas permiten la escalada de privilegios locales mediante la explotación combinada de pam_env y polki
@henryraul
20 Jun 2025
80 Impressions
5 Retweets
5 Likes
1 Bookmark
1 Reply
0 Quotes
Linux flaws chain allows Root access across major distributions Qualys researchers discovered two chained local privilege escalation (LPE) vulnerabilities—CVE-2025-6018 and CVE-2025-6019—that can grant root access on major Linux distributions. CVE-2025-6018 allows unprivileg
@dCypherIO
20 Jun 2025
28 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Researchers found two local privilege escalation flaws (CVE-2025-6018 & CVE-2025-6019) in major Linux distributions that could allow unprivileged attackers to gain root access, urging users to apply patches or adjust Polkit rules. #LinuxSecurity #Vulnera… https://t.co/DXL0q
@Cyber_O51NT
20 Jun 2025
227 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
Critical Linux Flaws (CVE-2025-6018 & CVE-2025-6019) Allow Unprivileged Users to Gain Root Access https://t.co/vb2D8wdzVQ
@the_yellow_fall
20 Jun 2025
1408 Impressions
15 Retweets
31 Likes
6 Bookmarks
1 Reply
0 Quotes
Researchers at @qualys have uncovered two privilege escalation flaws: CVE-2025-6018 and CVE-2025-6019, that can be chained to let attackers gain full root access. 🔗 Read more: https://t.co/AXCjO8H3Yi ✍ Josh Breaker-Rolfe #Linux #Vulnerability #ISBNews
@Info_Sec_Buzz
20 Jun 2025
92 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New CVEs = Full Root Access on @Linux ? CVE-2025-6018 + CVE-2025-6019 allow remote users to spoof physical access, then go full root via udisks. Add CVE-2023-0386 & you’ve got a serious escalation chain. Patch now! 🔗 https://t.co/SMrpkBeJvN #CyberSecurity #Linux #C
@socradar
20 Jun 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
URGENT: SUSE patches high-severity GDM flaw (CVE-2025-6018, CVSS 8.6). Requires removing pam_env from auth stack. Impacts: ✅ SLES 15 SP3 ✅ SAP Apps ✅ HPC clusters Read more: 👉 https://t.co/WKtitLdkBQ #infosec #Linux https://t.co/eGnH7i4V86
@Cezar_H_Linux
19 Jun 2025
46 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
Security Alert: New Linux flaws (CVE-2025-6018, CVE-2025-6019) allow attackers to gain full root access on major distributions, reported today, June 19, 2025. Threat: A simple user login can escalate to full system control via PAM and udisks, risking data breaches or downtime in
@tony3266
19 Jun 2025
78 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 اكتشاف ثغرة جديدة في نظام لينكس! ثغرتان متتاليتان (CVE-2025-6018 و6019) تسمحان لأي مستخدم محلي بالحصول على صلاحيات الجذر في ثوانٍ - دون الحاجة إلى ثغرة يوم الصف
@zoro__dev
19 Jun 2025
120 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-6018 : New Linux udisks flaw lets attackers get root on major Linux distros https://t.co/wDj4i9OvoQ
@freedomhack101
19 Jun 2025
8 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-6018 and CVE-2025-6019: New Linux privilege escalation flaws in PAM and udisks allow local attackers to chain exploits and gain full root. Confirmed on SUSE, Ubuntu, Debian, and Fedora. Patch now and update Polkit rules. #Linux #CVE2025 #PrivilegeEscalation https://t.
@CloneSystemsInc
19 Jun 2025
87 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
🐧 Two new Linux flaws (CVE-2025-6018 & CVE-2025-6019) allow attackers to escalate from user to root in seconds—impacting major distros via PAM & udisks. Patch now. #Vulnerability 🚨 #PrivilegeEscalation 🧨 https://t.co/9OkAqPhNjC
@manuelbissey
19 Jun 2025
27 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Root access for anyone? Major new Linux flaws (CVE-2025-6018/6019) let attackers escalate to full control. Patch now or stay vulnerable. 🛡️ Our USB toolkit helps you audit devices fast. https://t.co/CquUH5faUS https://t.co/N883H8SvFL
@bootableusbs
19 Jun 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 3 Critical CVEs – Patch Now! 🔒 Linux (CVE-2025-6018/6019): Root via udisks + PAM ✅ Update all major distros 🧨 Veeam (CVE-2025-23121): RCE via domain user ✅ Patch to v12.1.2.1722 🔥 SAP (CVE-2025-31324): CVSS 10.0 zero-day ✅ Apply Apr/May 2025 SAP Notes htt
@Samuel257196756
19 Jun 2025
79 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 ALERT: Critical flaws in openSUSE Leap 15, Ubuntu, Debian & Fedora! CVE-2025-6018 & CVE-2025-6019 grant FULL ROOT ACCESS. Patch NOW or risk total compromise! 🔐 #Linux #Cybersecurity https://t.co/JFVopwIz3I
@_F2po_
19 Jun 2025
68 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Two critical Linux flaws (CVE-2025-6018 & CVE-2025-6019) could let attackers gain full root access via PAM and udisks. These vulnerabilities affect major distros—patch now to prevent system-wide compromises. 🔐 #LinuxSecurity #CyberThreat #UK https://t.co/cinHZ9j03b
@TweetThreatNews
19 Jun 2025
137 Impressions
0 Retweets
2 Likes
2 Bookmarks
0 Replies
0 Quotes
CVE-2025-6018: LPE from unprivileged to allow_active in *SUSE 15's PAM CVE-2025-6019: LPE from allow_active to root in libblockdev via udisks https://t.co/JBQttZCpsS
@hardenedlinux
19 Jun 2025
195 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
【Linuxに権限昇格の脆弱性:CVE-2025-6018、CVE-2025-6019】両脆弱性を連鎖させると完全なroot権限を得られるという。またこれとは別に米CISAは17日、Linuxカーネルの古い脆弱性CVE-2023-0386(不適切な所有権管理)をKEVカタ
@MachinaRecord
19 Jun 2025
165 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
19/06/2025 New critical vulnerabilities allow full root access on major Linux distros! 🚨 CVE-2025-6018 & CVE-2025-6019 pose severe LPE risks. Immediate patching recommended to protect systems. Source: https://t.co/z0y0LBtEju
@kernyx64
19 Jun 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Root access risk! New Linux flaws (CVE-2025-6018, CVE-2025-6019) let attackers gain full control. Patch ASAP & tweak Polkit/PAM settings to mitigate. #LinuxSecurity #Cybersecurity #VulnerabilityManagement https://t.co/cDr2n7YAe4
@fernandokarl
19 Jun 2025
80 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Critical Linux vulnerabilities CVE-2025-6018 & CVE-2025-6019 allow privilege escalation to root level. Stay informed: https://t.co/pT4qjDPZnF #CyberSecurity #LinuxSecurity
@threatlight
19 Jun 2025
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 New Linux Root Exploits Discovered! 2 chained flaws (CVE-2025-6018 & 6019) let any local user become root in seconds—no zero-day needed. The worst part? Most distros are vulnerable by default. Details here → https://t.co/AYIwPmJhM4... https://t.co/GxckEpic9A
@IT_news_for_all
19 Jun 2025
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 New Linux Root Exploits Discovered! 2 chained flaws (CVE-2025-6018 & 6019) let any local user become root in seconds—no zero-day needed. The worst part? Most distros are vulnerable by default. Details here → https://t.co/k8mvlHxMJF
@TheHackersNews
19 Jun 2025
24682 Impressions
116 Retweets
270 Likes
95 Bookmarks
4 Replies
0 Quotes
Two local privilege escalation vulnerabilities, CVE-2025-6018 on openSUSE and CVE-2025-6019 in libblockdev, allow attackers to gain root access. Immediate patching is essential to prevent network compromise. #Security https://t.co/5OKW8oYWvT
@Strivehawk
18 Jun 2025
79 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
2つのLPEを連鎖させて「ルート」権限を取得:ほとんどのLinuxディストリビューションに脆弱性(CVE-2025-6018、CVE-2025-6019) Chaining two LPEs to get “root”: Most Linux distros vulnerable (CVE-2025-6018, CVE-2025-6019) #HelpNetSecurity
@foxbook
18 Jun 2025
322 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
New Linux udisks flaw lets attackers get root on major Linux distros Two critical local privilege escalation (LPE) vulnerabilities—CVE-2025-6018 (in PAM on SUSE systems) and CVE-2025-6019 (in libblockdev via the udisks daemon)—can be chained to gain root access on major Lin
@dCypherIO
18 Jun 2025
93 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Chaining two LPEs to get “root”: Most Linux distros vulnerable (CVE-2025-6018, CVE-2025-6019) https://t.co/hV5v38CzNH #HelpNetSecurity #Cybersecurity https://t.co/yHV69W18Jd
@PoseidonTPA
18 Jun 2025
57 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Chaining two LPEs to get “#root”: Most #Linux distros vulnerable (#CVE-2025-6018, CVE-2025-6019) https://t.co/qzo11uGo99
@ScyScan
18 Jun 2025
58 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Qualys found 2 Linux vulns (CVE-2025-6018, CVE-2025-6019) that, when combined, grant root access easily. CVE-2025-6018 misconfigures PAM, letting attackers bypass security. CVE-2025-6019 is in libblockdev. Patch immediately! https://t.co/7aK3qHwFMC
@Jfreeg_
18 Jun 2025
79 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
【CVE-2025-6018,6019】PAMとudisksの連鎖攻撃でroot権限奪取が可能、openSUSE・Ubuntuなど主要Linuxディストリビューションに影響 https://t.co/uE9iYLsUU2 @nikkeimatomeより
@nikkeimatome
18 Jun 2025
57 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ Linux Privilege Escalation Vulnerabilities Let Attackers Gain Full Root Access Read more: https://t.co/jn550VqurA Two critical, interconnected flaws, CVE-2025-6018 and CVE-2025-6019, enable unprivileged attackers to achieve root access on major Linux distributions. The
@The_Cyber_News
18 Jun 2025
597 Impressions
2 Retweets
12 Likes
2 Bookmarks
0 Replies
0 Quotes
多くのLinuxディストリビューションに影響する権限昇格の脆弱性チェーンについて。CVE-2025-6018及びCVE-2025-6019。 https://t.co/tvY1bpZJvR 前者はPAMの構成に起因し、SSH経由のユーザにコンソールアクセス時の"allow_active"
@__kokumoto
18 Jun 2025
1840 Impressions
4 Retweets
17 Likes
8 Bookmarks
0 Replies
0 Quotes
CVE-2025-6018 CVE-2025-6019 https://t.co/yFocL7Z2Gr
@VulmonFeeds
17 Jun 2025
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes