CVE-2025-31160

Description

atop through 2.11.0 allows local users to cause a denial of service (e.g., assertion failure and application exit) or possibly have unspecified other impact by running certain types of unprivileged processes while a different user runs atop.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

Affected products

atop project / atop0 – 2.11.0

References

MISChttps://rachelbythebay.com/w/2025/03/26/atop/
MISChttps://news.ycombinator.com/item?id=43485980
MISChttps://news.ycombinator.com/item?id=43477057
MISChttps://github.com/Atoptool/atop
MISChttps://blog.bismuth.sh/blog/bismuth-found-the-atop-bug