CVE-2025-12972 | FluentBit 4.1.0 out_file path traversal

Inserito da Angelo Barbosa | Nov 24, 2025 | CVE

A vulnerability was found in FluentBit 4.1.0. It has been declared as critical. Affected by this vulnerability is the function out_file of the component out_file. Executing manipulation can lead to path traversal: ‘…/…//’.

This vulnerability appears as CVE-2025-12972. The attack may be performed from remote. There is no available exploit.

CVE-2025-12972 | FluentBit 4.1.0 out_file path traversal

Post correlati

CVE-2024-30050 | Microsoft Windows up to Server 2022 23H2 Mark of the Web unknown vulnerability

CVE-2025-24390 | OTRS 7.0.x/8.0.x/2023.x/2024.x missing secure attribute

CVE-2024-5344 | Plus Addons for Elementor Page Builder Plugin up to 5.5.6 on WordPress WP Login/Register Widget cross site scripting

CVE-2024-45710 | SolarWinds Platform up to 2024.2.1 uncontrolled search path