// For flags

CVE-2025-12740

Remote Command Execution in Looker via IBM DB2 JDBC drive

Severity Score

7.7
*CVSS v4

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track*
*SSVC
Descriptions

A Looker user with a Developer role could create a database connection using IBM DB2 driver and, by manipulating LookML, cause Looker to execute a malicious command, due to inadequate filtering of the driver's parameters. Looker-hosted and Self-hosted were found to be vulnerable.
This issue has already been mitigated for Looker-hosted instances. No user action is required for these. Self-hosted instances must be upgraded as soon as possible. This vulnerability has been patched in all supported versions of Self-hosted.
The versions below have all been updated to protect from this vulnerability. You can download these versions at the Looker download page https://download.looker.com/ : * 25.0.93+ * 25.6.84+ * 25.12.42+ * 25.14.50+ * 25.16.44+

A Looker user with a Developer role could create a database connection using IBM DB2 driver and, by manipulating LookML, cause Looker to execute a malicious command, due to inadequate filtering of the driver's parameters. Looker-hosted and Self-hosted were found to be vulnerable. This issue has already been mitigated for Looker-hosted instances. No user action is required for these. Self-hosted instances must be upgraded as soon as possible. This vulnerability has been patched in all supported versions of Self-hosted. The versions below have all been updated to protect from this vulnerability. You can download these versions at the Looker download page https://download.looker.com/ : * 25.0.93+ * 25.6.84+ * 25.12.42+ * 25.14.50+ * 25.16.44+

*Credits: RyotaK of GMO Flatt Security Inc.
CVSS Scores
Attack Vector
Network
Attack Complexity
High
Attack Requirements
Present
Privileges Required
Low
User Interaction
None
System
Vulnerable | Subsequent
Confidentiality
High
None
Integrity
High
None
Availability
High
None
Attack Vector
Network
Attack Complexity
High
Attack Requirements
Present
Privileges Required
Low
User Interaction
None
System
Vulnerable | Subsequent
Confidentiality
High
None
Integrity
High
None
Availability
High
None
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:Track*
Exploitation
None
Automatable
No
Tech. Impact
Total
* Organization's Worst-case Scenario
Timeline
  • 2025-11-05 CVE Reserved
  • 2025-11-24 CVE Published
  • 2025-11-24 CVE Updated
  • 2025-11-24 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-20: Improper Input Validation
CAPEC
  • CAPEC-242: Code Injection
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Google Cloud
Search vendor "Google Cloud"
 Looker
Search vendor "Google Cloud" for product "Looker"
 < 25.0.93
Search vendor "Google Cloud" for product "Looker" and version " < 25.0.93"
en
Affected
Google Cloud
Search vendor "Google Cloud"
 Looker
Search vendor "Google Cloud" for product "Looker"
 < 25.6.84
Search vendor "Google Cloud" for product "Looker" and version " < 25.6.84"
en
Affected
Google Cloud
Search vendor "Google Cloud"
 Looker
Search vendor "Google Cloud" for product "Looker"
 < 25.12.42
Search vendor "Google Cloud" for product "Looker" and version " < 25.12.42"
en
Affected
Google Cloud
Search vendor "Google Cloud"
 Looker
Search vendor "Google Cloud" for product "Looker"
 < 25.14.50
Search vendor "Google Cloud" for product "Looker" and version " < 25.14.50"
en
Affected
Google Cloud
Search vendor "Google Cloud"
 Looker
Search vendor "Google Cloud" for product "Looker"
 < 25.16.44
Search vendor "Google Cloud" for product "Looker" and version " < 25.16.44"
en
Affected
Google Cloud
Search vendor "Google Cloud"
 Looker
Search vendor "Google Cloud" for product "Looker"
 < 25.0.93
Search vendor "Google Cloud" for product "Looker" and version " < 25.0.93"
en
Affected
Google Cloud
Search vendor "Google Cloud"
 Looker
Search vendor "Google Cloud" for product "Looker"
 < 25.6.84
Search vendor "Google Cloud" for product "Looker" and version " < 25.6.84"
en
Affected
Google Cloud
Search vendor "Google Cloud"
 Looker
Search vendor "Google Cloud" for product "Looker"
 < 25.12.42
Search vendor "Google Cloud" for product "Looker" and version " < 25.12.42"
en
Affected
Google Cloud
Search vendor "Google Cloud"
 Looker
Search vendor "Google Cloud" for product "Looker"
 < 25.14.50
Search vendor "Google Cloud" for product "Looker" and version " < 25.14.50"
en
Affected
Google Cloud
Search vendor "Google Cloud"
 Looker
Search vendor "Google Cloud" for product "Looker"
 < 25.16.44
Search vendor "Google Cloud" for product "Looker" and version " < 25.16.44"
en
Affected