screen session PTY set to 666 allows local takeover
CVE-2025-46802 Published on May 26, 2025

Temporary chown() of users' TTY to mode 0666 allows PTY hijacking in screen
For a short time they PTY is set to mode 666, allowing any user on the system to connect to the screen session.

NVD

Vulnerability Analysis

CVE-2025-46802 is exploitable with local system access, requires user interaction and a small amount of user privileges. This vulnerability is consided to have a high level of attack complexity. Public availability of a proof of concept (POC) exploit exists for CVE-2025-46802. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality and integrity, and no impact on availability.

Attack Vector:
LOCAL
Attack Complexity:
HIGH
Privileges Required:
LOW
User Interaction:
REQUIRED
Scope:
UNCHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
NONE

Weakness Type

Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. When a resource is given a permissions setting that provides access to a wider range of actors than required, it could lead to the exposure of sensitive information, or the modification of that resource by unintended parties. This is especially dangerous when the resource is related to program configuration, execution or sensitive user data.


Products Associated with CVE-2025-46802

stack.watch emails you whenever new vulnerabilities are published in GNU Screen or Canonical Ubuntu Linux. Just hit a watch button to start following.

GNU Screen
 
Canonical Ubuntu Linux
 

Affected Versions

SUSE Linux Enterprise Micro 5.3: SUSE Linux Enterprise Micro 5.4: SUSE Linux Enterprise Micro 5.5: SUSE Linux Enterprise Module for Basesystem 15 SP6: SUSE Linux Enterprise Server 15 SP6: SUSE Linux Enterprise Desktop 15 SP6: SUSE Linux Enterprise Server for SAP Applications 15 SP6: SUSE Linux Enterprise High Performance Computing 15 SP6:

Exploit Probability

EPSS
0.02%
Percentile
4.85%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.