NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2025-14551

Summary	In Ubuntu, Subiquity version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, Subiquity could include certain user credentials, such as the user's plaintext Wi-Fi password, in the attached logs.
Publication Date	April 10, 2026, 1:16 a.m.
Registration Date	April 15, 2026, 11:34 a.m.
Last Update	April 14, 2026, 12:02 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/canonical/subiquity/pull/2357	security@ubuntu.com
2	https://github.com/canonical/subiquity/pull/2358	security@ubuntu.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-1258	未クリアのデバッグ情報による重要なシステム情報の公開	https://cwe.mitre.org/data/definitions/1258.html