CVE-2025-66433 – HTCondor Access Point Unauthenticated Local Privilege Escalation

CVE ID : CVE-2025-66433

Published : Nov. 30, 2025, 5:16 a.m. | 1 hour, 8 minutes ago

Description : HTCondor Access Point before 25.3.1 allows an authenticated user to impersonate other users on the local machine by submitting a batch job. This is fixed in 24.12.14, 25.0.3, and 25.3.1. The earliest affected version is 24.7.3.

Severity: 4.2 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…