
We found results for “”
CVE-2025-5689
Good to know:

Date: June 16, 2025
A flaw was found in the temporary user record that authd uses in the pre-auth NSS. As a result, a user login for the first time will be considered to be part of the root group in the context of that SSH session.
Severity Score
Related Resources (5)
Severity Score
Top Fix

Upgrade Version
Upgrade to version github.com/ubuntu/authd - v0.5.4;https://github.com/ubuntu/authd.git - v0.5.4
CVSS v3.1
Base Score: |
|
---|---|
Attack Vector (AV): | NETWORK |
Attack Complexity (AC): | LOW |
Privileges Required (PR): | LOW |
User Interaction (UI): | NONE |
Scope (S): | CHANGED |
Confidentiality (C): | HIGH |
Integrity (I): | LOW |
Availability (A): | NONE |