Primary

Context

PPP Privilege Mismanagement Vulnerability in Passprompt Plugin

Vulnerability

A vulnerability has been identified in the passprompt plugin of the Point-to-Point Protocol Daemon (pppd) in versions of PPP prior to 2.5.2. This vulnerability arises from the plugin's improper handling of privileges, which could potentially be exploited.

Impact

The vulnerability could lead to unauthorized privilege escalation by allowing a user to gain elevated rights or access, disrupting the normal privilege management within the application.

Remediation

Users can upgrade to PPP version 2.5.2 or later, where this vulnerability has been addressed.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

PPP Privilege Mismanagement Vulnerability in Passprompt Plugin

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating