CVE-2025-1390

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Feb 18, 2025

CWE ID 284

Summary

CVE-2025-1390 introduces a vulnerability in the pam_cap.so module of libcap's PAM configuration. Group names in the configuration that do not begin with "@" symbol are mistakenly identified as group names, leading to unintended users gaining inherited capability sets. This misinterpretation may pose security risks, allowing attackers to exploit the flaw and escalate local privileges. The vulnerability specifically targets systems utilizing /etc/security/capability.conf to configure user inherited privileges, enabling attackers to construct specific usernames and potentially gain elevated access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3cSQJu
https://www.cve.org/CVERecord?id=CVE-2025-1390
https://nvd.nist.gov/vuln/detail/CVE-2025-1390

Back to Vulnerability Database

CVE-2025-1390

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations