CVE-2025-10622

HIGH LAB

Red Hat Satellite - Command Injection

Title source: llm

Description

A flaw was found in Red Hat Satellite (Foreman component). This vulnerability allows an authenticated user with edit_settings permissions to achieve arbitrary command execution on the underlying operating system via insufficient server-side validation of command whitelisting.

Exploits (1)

github WORKING POC

by exploitintel · pythonpoc

https://github.com/exploitintel/eip-pocs-and-cves/tree/main/CVE-2025-10622

View Code ZIP pw:eip

References (7)

[Various Sources] https://theforeman.org/security.html#2025-10622

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2025:19721

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2025:19832

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2025:19855

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2025:19856

[Vendor Advisory] https://access.redhat.com/security/cve/CVE-2025-10622

[Issue Tracking] https://bugzilla.redhat.com/show_bug.cgi?id=2396020

Related Analysis

Foreman & Telnetd

Scores

CVSS v3 8.0

EPSS 0.0008

EPSS Percentile 23.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Lab Environment

EIP LAB

Lab screenshot

vulnerable docker pull ghcr.io/exploitintel/cve-2025-10622-vulnerable:latest

View in Library GitHub

COMMUNITY

docker pull postgres:12

docker pull redis:7

https://github.com/exploitintel/eip-pocs-and-cves

View in Library

Details

CWE

CWE-78

Status published

Products (7)

Red Hat/Red Hat Satellite 6

Red Hat/Red Hat Satellite 6.15 for RHEL 8 0:3.9.1.13-1.el8sat

Red Hat/Red Hat Satellite 6.16 for RHEL 8 0:3.12.0.11-1.el8sat

Red Hat/Red Hat Satellite 6.16 for RHEL 9 0:3.12.0.11-1.el9sat

Red Hat/Red Hat Satellite 6.17 for RHEL 9 0:3.14.0.10-1.el9sat

Red Hat/Red Hat Satellite 6.18 for RHEL 9 0:3.16.0.4-1.el9sat

The Foreman/Foreman 3.12.0 - 3.16.1

Published Nov 05, 2025

Tracked Since Feb 18, 2026