Broadcom Automic
Automation Agent Unix versions <
24.3.0 HF4 and < 21.0.13 HF1 allow low privileged users who have execution
rights on the agent executable to escalate their privileges.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 20 May 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 20 May 2025 00:00:00 +0000

Type Values Removed Values Added
Description Broadcom Automic Automation Agent Unix versions < 24.3.0 HF4 and < 21.0.13 HF1 allow low privileged users who have execution rights on the agent executable to escalate their privileges.
Title Broadcom Automic Automation Agent Unix privilege escalation
Weaknesses CWE-426
References
Metrics cvssV4_0

{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: ca

Published:

Updated: 2025-05-20T14:08:34.329Z

Reserved: 2025-05-19T22:33:20.205Z

Link: CVE-2025-4971

cve-icon Vulnrichment

Updated: 2025-05-20T14:08:25.960Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-05-20T00:15:25.253

Modified: 2025-05-21T20:25:16.407

Link: CVE-2025-4971

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.