What is CVE-2025-5088?

CVE-2025-5088 is a high-severity vulnerability, classified under Improper Privilege Management. CVSS score: 8.3/10. Published 2026-06-05.

How severe is CVE-2025-5088?

High severity. CVSS v3 base score is 8.3 out of 10.

CVE-2025-5088

CVE-2025-5088

An authenticated Redis session could be used to obtain full root access to all servers in the CVX cluster. Note that this would require an attacker to have both network access to the Redis service on a CVX server and the Redis password. Pl…

Vulnerability class: Privilege Escalation

CVSS v3 metric

CVSS v3 base score 8.3 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L.

Weakness classification (CWE)

CWE-269 — Improper Privilege Management

References

psirt@arista.com

Frequently asked questions

What is CVE-2025-5088?: CVE-2025-5088 is a high-severity vulnerability, classified under Improper Privilege Management. CVSS score: 8.3/10. Published 2026-06-05.
How severe is CVE-2025-5088?: High severity. CVSS v3 base score is 8.3 out of 10.