CVE-2025-5199 | THREATINT

Description

In Canonical Multipass up to and including version 1.15.1 on macOS, incorrect default permissions allow a local attacker to escalate privileges by modifying files executed with administrative privileges by a Launch Daemon during system startup.

PUBLISHED Reserved 2025-05-26 | Published 2025-07-11 | Updated 2025-07-14 | Assigner canonical

HIGH: 7.3CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Problem types

CWE-276 Incorrect Default Permissions

Product status

Default status

unaffected

Any version before 1.16.0

affected

Credits

Isaac Ordonez finder

References

github.com/...tipass/security/advisories/GHSA-2j82-p5cq-62p3 exploit

github.com/...tipass/security/advisories/GHSA-2j82-p5cq-62p3 vendor-advisory

github.com/canonical/multipass/pull/4115 patch

cve.org (CVE-2025-5199)

nvd.nist.gov (CVE-2025-5199)

Download JSON