Skip to main content

EUVDEUVD-2025-18129

| CVE-2025-1699 LOW
Incorrect Default Permissions (CWE-276)
2025-06-11 psirt@lenovo.com
2.8
CVSS 3.1 · NVD

Severity by source

NVD PRIMARY
2.8 LOW
AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None

Lifecycle Timeline

4
Patch available
Apr 16, 2026 - 05:29 EUVD
2025-06-01
EUVD ID Assigned
Mar 14, 2026 - 21:09 euvd
EUVD-2025-18129
Analysis Generated
Mar 14, 2026 - 21:09 vuln.today
CVE Published
Jun 11, 2025 - 17:15 nvd
LOW 2.8

DescriptionCVE.org

An incorrect default permissions vulnerability was reported in the MotoSignature application that could result in unauthorized access.

Analysis

An incorrect default permissions vulnerability was reported in the MotoSignature application that could result in unauthorized access.

Technical ContextAI

Privilege escalation allows a low-privileged user or process to gain elevated permissions beyond what was originally authorized. This vulnerability is classified as Incorrect Default Permissions (CWE-276).

RemediationAI

Apply the principle of least privilege. Keep systems patched. Monitor for suspicious privilege changes. Use mandatory access controls (SELinux, AppArmor).

Share

EUVD-2025-18129 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy