CVE-2025-5689: New authd users logging in via SSH are members of the root group
a year ago
- #SSH
- #Privilege Escalation
- #Security
- A security vulnerability exists where new users logging in via SSH are incorrectly assigned root group privileges.
- This can lead to local privilege escalation if the user should not have root access.
- The issue has been patched in commit 619ce8e.
- Workarounds include configuring the SSH server to disable authd authentication by setting 'UsePAM no' or 'KbdInteractiveAuthentication no' in sshd_config.