A recently discovered Local Privilege Escalation (LPE) vulnerability (CVE-2025-6019) enables attackers to gain root privileges on most Linux distributions.
Severity level: CVSS Score: 7/High
Description: The libblockdev library is used for low-level operations with block devices (e.g., hard disks) in Linux. The CVE-2025-6019 vulnerability is exploited by accessing the udisks2 daemon (used to manage storage devices) — provided that the attackers manage to obtain the privileges of the active user present on the computer (allow_active). Affected Versions: Linux distributions
Impact: Successful exploitation could allow unauthorized access to the systems.
Resolution: Appy the patches released by the vendors.
