Unrated severityNVD Advisory· Published Aug 22, 2025· Updated Aug 26, 2025

CVE-2025-50674

Description

An issue was discovered in the changePassword method in file /usr/share/php/openmediavault/system/user.inc in OpenMediaVault 7.4.17 allowing local authenticated attackers to escalate privileges to root.

Affected products

OpenMediaVault/OpenMediaVaultdescription
Openmediavault/Openmediavaultllm-fuzzy
Range: = 7.4.17

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

openmediavault.commitre
gist.github.com/xbz0n/4b98e9291ddd5bb5e6232609e36b2082mitre
xbz0n.sh/blog/CVE-2025-50674mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000