CVE-2026-6970

216.73.217.22

· Published 27/04/2026 16:16 · Modified 27/04/2026 18:35

Labels: CVE-2026-6970 2026-04-27 CVE-2026-6970 CWE-842 [email protected]

Essential information

Published: 27/04/2026 16:16
Modified: 27/04/2026 18:35
Author: —
Creator: —
CVSS: 7.3 HIGH (v3) 7.3 HIGH (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

authd prior to version 0.6.4 contains a logic error in primary group ID assignment that can lead to local privilege escalation. When a user's primary group ID (GID) differs from their UID, either because the account was created with authd prior to version 0.5.4 or because the primary group was manually changed via the `authctl group set-gid` command, and the user's identity provider record is updated, authd incorrectly resets the user's primary group ID to their UID upon next login. This causes newly created files and directories to be owned by the wrong group, causing denial of service issues, and potentially granting unintended access to other local users and allowing local privilege escalation.

NVD status

Status: Deferred — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
ubuntu / authd	`cpe:2.3:a:ubuntu:authd:<0.6.4:::::::*`