CVE-2025-55283
Published: 18 August 2025
Summary
CVE-2025-55283 is a critical-severity Command Injection (CWE-77) vulnerability in Aiven Aiven-Db-Migrate. Its CVSS base score is 9.1 (Critical).
Operationally, ranked at the 28.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-25128
Vulnerability details
aiven-db-migrate is an Aiven database migration tool. Prior to 1.0.7, there is a privilege escalation vulnerability that allows elevation to superuser inside PostgreSQL databases during a migration from an untrusted source server. The vulnerability stems from psql executing commands embedded…
more
in a dump from the source server. This vulnerability is fixed in 1.0.7.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.