Unexpected paths returned from LookPath in os/exec_CVE-2025-47906

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Description

If the PATH environment variable contains paths which are executables (rather than just directories), passing certain strings to LookPath ("", ".", and ".."), can result in the binaries listed in the PATH being unexpectedly returned.

Basic Information

ID CVE-2025-47906

Source Go

Published Sep 18, 2025 at 18:41

Modified Sep 18, 2025 at 20:42

Affected Product

Vendor Go standard library

Product os/exec

Affected Versions Go standard library os/exec 0
Go standard library os/exec 1.24.0

References

{
    "lastseen": "",
    "description": "If the PATH environment variable contains paths which are executables (rather than just directories), passing certain strings to LookPath (\"\", \".\", and \"..\"), can result in the binaries listed in the PATH being unexpectedly returned.",
    "published": "2025-09-18T18:41:11.847Z",
    "modified": "2025-09-18T20:42:38.389Z",
    "type": "cve",
    "title": "Unexpected paths returned from LookPath in os/exec",
    "source": "Go",
    "references": "https://go.dev/cl/691775\nhttps://go.dev/issue/74466\nhttps://groups.google.com/g/golang-announce/c/x5MKroML2yM\nhttps://pkg.go.dev/vuln/GO-2025-3956",
    "id": "CVE-2025-47906",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Go standard library os/exec 0\nGo standard library os/exec 1.24.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "os/exec",
    "version": "0",
    "vendor": "Go standard library",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

Affected Product

References

💭 Join the Security Discussion ❌ Cancel Reply