CVE-2025-7012

Cato Networks Linux Client Local Privilege Escalation via Symlink

Description

An issue in Cato Networks' CatoClient for Linux, before version 5.5, allows a local attacker to escalate privileges to root by exploiting improper symbolic link handling.

INFO

Published Date :

2025-07-13T08:12:20.973Z

Last Modified :

2025-07-14T20:11:08.143Z

Source :

Cato

AFFECTED PRODUCTS

The following products are affected by CVE-2025-7012 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-7012.

URL	Resource
https://support.catonetworks.com/hc/en-us/articles/28552501717405-CVE-2025-7012-Linux-Client-Local-Privilege-Escalation-via-Symbolic-Link-Handling

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability