CVE-2025-54314

low-risk

Published 2025-07-20

Thor before 1.4.0 can construct an unsafe shell command from library input. NOTE: this is disputed by the Supplier because "the method that was fixed can only be used with arguments that are controlled by Thor, and there is no way an attacker can take control of those arguments."

Do I need to act?

0.03% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 2.8/10 Low

LOCAL / HIGH complexity

References (5)

https://github.com/github/advisory-database/pull/5912#issuecomment-3169255309

https://github.com/rails/thor/commit/536b79036a0efb765c1899233412e7b1ca94abfa

https://github.com/rails/thor/pull/897

https://github.com/rails/thor/releases/tag/v1.4.0

https://hackerone.com/reports/3260153

/ 100

low-risk

Severity 7/34 · Low

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal