CVE-2025-46803

MEDIUM

Screen - Incorrect Default Permissions in Pseudo Terminals

Title source: llm

Description

The default mode of pseudo terminals (PTYs) allocated by Screen was changed from 0620 to 0622, thereby allowing anyone to write to any Screen PTYs in the system.

References (3)

Core 3

Core References

Mailing List

https://www.openwall.com/lists/oss-security/2025/05/12/1

Mailing List

http://www.openwall.com/lists/oss-security/2025/05/13/6

Issue Tracking

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-46803

Scores

CVSS v3 5.0

EPSS 0.0020

EPSS Percentile 9.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-276

Status published

Published May 26, 2025

Tracked Since Feb 18, 2026