CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-15480

In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, ubuntu-desktop-provision could include the user's password hash in the attached logs.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.3%

CVSS Severity

CVSS v3 Score 9.1

References

https://github.com/canonical/ubuntu-desktop-provision/pull/1399
https://github.com/canonical/ubuntu-desktop-provision/pull/1400

Products affected by CVE-2025-15480

Canonical » Ubuntu Desktop Provision » Version: 24.04.4

cpe:2.3:a:canonical:ubuntu_desktop_provision:24.04.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-15480

Products

Pricing

Contact Us