{
  "threat_severity" : "Important",
  "public_date" : "2026-01-08T15:23:46Z",
  "bugzilla" : {
    "description" : "Foomuuri: Foomuuri: Integrity loss of firewall configuration via improper neutralization of argument delimiters",
    "id" : "2428023",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2428023"
  },
  "cvss3" : {
    "cvss3_base_score" : "7.8",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
    "status" : "draft"
  },
  "cwe" : "CWE-88",
  "details" : [ "A Improper Neutralization of Argument Delimiters vulnerability in Foomuuri can lead to integrity loss of the firewall configuration or further unspecified impact by manipulating the JSON configuration passed to `nft`.\nThis issue affects Foomuuri: from ? before 0.31.", "A flaw was found in Foomuuri. A local user can exploit this vulnerability by manipulating the JSON configuration passed to `nft`. This improper neutralization of argument delimiters can lead to the integrity loss of the firewall configuration or other unspecified impacts." ],
  "statement" : "This vulnerability is rated Important for Red Hat's Community Projects because a local user can exploit an improper neutralization of argument delimiters in Foomuuri. This flaw allows manipulation of the JSON configuration passed to `nft`, leading to integrity loss of the firewall configuration. This could result in unauthorized network access or other unspecified impacts on affected systems running Foomuuri.",
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2025-67858\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-67858\nhttps://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-67858\nhttps://security.opensuse.org/2026/01/07/foomuuri-lack-of-dbus-authorization.html" ],
  "name" : "CVE-2025-67858",
  "mitigation" : {
    "value" : "To mitigate this vulnerability, if the Foomuuri package is not essential for system operation, consider removing it. For systems where Foomuuri is required, ensure that only trusted administrators have local access, as exploitation requires local interaction to manipulate firewall configurations.",
    "lang" : "en:us"
  },
  "csaw" : false
}