VYPR
High severity7.1GHSA Advisory· Published Jun 6, 2025· Updated Apr 15, 2026

CVE-2025-5791

CVE-2025-5791

Description

A flaw was found in the user's crate for Rust. This vulnerability allows privilege escalation via incorrect group listing when a user or process has fewer than exactly 1024 groups, leading to the erroneous inclusion of the root group in the access list.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
userscrates.io
>= 0.8.0, <= 0.11.0

Affected products

14

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.