VYPR
High severity7.3NVD Advisory· Published Jul 12, 2025· Updated Jun 17, 2026

CVE-2025-5199

CVE-2025-5199

Description

In Canonical Multipass up to and including version 1.15.1 on macOS, incorrect default permissions allow a local attacker to escalate privileges by modifying files executed with administrative privileges by a Launch Daemon during system startup.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Canonical/Multipassllm-fuzzy2 versions
    <=1.15.1+ 1 more
    • (no CPE)range: <=1.15.1
    • (no CPE)range: 0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.