CVE-2025-5199

Published: Jul 12, 2025Modified: Aug 26, 2025

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

In Canonical Multipass up to and including version 1.15.1 on macOS, incorrect default permissions allow a local attacker to escalate privileges by modifying files executed with administrative privileges by a Launch Daemon during system startup.

Affected (1)

Products: Canonical: Multipass

Canonical

1 product

Multipass

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Canonical Multipass	Before 1.16.0

Running on/with	Platform Versions
Apple Macos	All versions

Related CWEs

CWE-276

Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

CWE-863

Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

References (3)

https://github.com/canonical/multipass/pull/4115

Source: security@ubuntu.com

Issue TrackingPatch

https://github.com/canonical/multipass/security/advisories/GHSA-2j82-p5cq-62p3

Source: security@ubuntu.com

ExploitPatchVendor Advisory

https://github.com/canonical/multipass/security/advisories/GHSA-2j82-p5cq-62p3

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

ExploitPatchVendor Advisory

Timeline

No history available yet.