The rtsol(8) and rtsold(8) programs do not validate the domain search list options provided in router advertisement messages, the option body is passed to resolvconf(8) unmodified.
resolvconf(8) is a shell script which does not validate its input. A lack of quoting meant that shell commands pass as input to resolvconf(8) may be executed.
Published: 2026-03-09
CVSS: 7.2
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Download Exploit for CVE-2025-14558 here:
Use Tor Browser to access .onion links.
Check our team here:
https://wednesfieldacademy.com/exploit-361-cve-2024-5217/
