CVE-2026-25702 Suse — Exploit & Vulnerability Details HIGH

CVE-2026-25702

HIGH CVSS 3.1: 7.3 EPSS 0.06%

Parameter	Value
CVSS	7.3 (HIGH)
Affected Versions	before 9
Type	CWE-284 (Improper Access Control)
Vendor	Suse
Public PoC	No

A Improper Access Control vulnerability in the kernel of SUSE SUSE Linux Enterprise Server 12 SP5 breaks nftables, causing firewall rules applied via nftables to not be effective.This issue affects SUSE Linux Enterprise Server: from 9e6d9d4601768c75fdb0bad3fbbe636e748939c2 before 9c294edb7085fb91650bc12233495a8974c5ff2d.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

Low

Easy to exploit

Privileges Required

None

No privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

Low

Partial data leak

Integrity

Low

Partial data modification

Availability

Low

Partial disruption

CVSS Vector v3.1

Weakness Type (CWE)

CWE-284 Improper Access Control

References 1

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-25702

meissner@suse.de

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-23025

Linux

7.8

CVE-2025-62877

Suse

9.8

CVE-2024-52869

Suse

6.0

Menu

CVE-2026-25702

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-23025

CVE-2025-62877

CVE-2024-52869

CVE Details

Editor's Choice

Menu

CVE-2026-25702

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-23025

CVE-2025-62877

CVE-2024-52869

CVE Details

Editor's Choice

Stay informed on cybersecurity