{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-15480", "assignerOrgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "state": "PUBLISHED", "assignerShortName": "canonical", "dateReserved": "2026-01-07T14:28:47.147Z", "datePublished": "2026-04-09T15:02:14.066Z", "dateUpdated": "2026-04-10T13:57:17.350Z"}, "containers": {"cna": {"title": "Senstive information disclosure was affecting ubuntu-desktop-provision", "affected": [{"vendor": "Canonical", "product": "Ubuntu", "platforms": ["Linux"], "collectionURL": "https://github.com/canonical", "packageName": "ubuntu-desktop-provision", "repo": "https://github.com/canonical/ubuntu-desktop-provision", "versions": [{"status": "affected", "version": "0", "lessThanOrEqual": "24.04.4", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThanOrEqual": "25.10", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThanOrEqual": "25.04", "versionType": "custom"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, ubuntu-desktop-provision could include the user's password hash in the attached logs."}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-1258", "description": "CWE-1258 Exposure of sensitive system information due to uncleared debug information", "type": "CWE"}]}], "references": [{"url": "https://github.com/canonical/ubuntu-desktop-provision/pull/1400", "name": "feat: don't log identity data (noble backport)", "tags": ["patch", "issue-tracking"]}, {"url": "https://github.com/canonical/ubuntu-desktop-provision/pull/1399", "name": "feat: don't log identity data", "tags": ["patch", "issue-tracking"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "LOW", "subConfidentialityImpact": "LOW", "vulnIntegrityImpact": "NONE", "subIntegrityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "UNREPORTED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "LOW", "baseScore": 2.7, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/E:U"}}], "source": {"discovery": "INTERNAL"}, "providerMetadata": {"orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "shortName": "canonical", "dateUpdated": "2026-04-09T15:02:14.066Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-10T13:56:33.119234Z", "id": "CVE-2025-15480", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-10T13:57:17.350Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-15480", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-10T13:56:33.119234Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-10T13:56:58.292Z"}}], "cna": {"title": "Senstive information disclosure was affecting ubuntu-desktop-provision", "source": {"discovery": "INTERNAL"}, "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 2.7, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "LOW", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/E:U", "exploitMaturity": "UNREPORTED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "LOW", "vulnConfidentialityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"repo": "https://github.com/canonical/ubuntu-desktop-provision", "vendor": "Canonical", "product": "Ubuntu", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "24.04.4"}, {"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "25.10"}, {"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "25.04"}], "platforms": ["Linux"], "packageName": "ubuntu-desktop-provision", "collectionURL": "https://github.com/canonical", "defaultStatus": "unaffected"}], "references": [{"url": "https://github.com/canonical/ubuntu-desktop-provision/pull/1400", "name": "feat: don't log identity data (noble backport)", "tags": ["patch", "issue-tracking"]}, {"url": "https://github.com/canonical/ubuntu-desktop-provision/pull/1399", "name": "feat: don't log identity data", "tags": ["patch", "issue-tracking"]}], "descriptions": [{"lang": "en", "value": "In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, ubuntu-desktop-provision could include the user's password hash in the attached logs."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1258", "description": "CWE-1258 Exposure of sensitive system information due to uncleared debug information"}]}], "providerMetadata": {"orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "shortName": "canonical", "dateUpdated": "2026-04-09T15:02:14.066Z"}}}, "cveMetadata": {"cveId": "CVE-2025-15480", "state": "PUBLISHED", "dateUpdated": "2026-04-10T13:57:17.350Z", "dateReserved": "2026-01-07T14:28:47.147Z", "assignerOrgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "datePublished": "2026-04-09T15:02:14.066Z", "assignerShortName": "canonical"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:canonical:ubuntu_desktop_provision:24.04.4:*:*:*:*:*:*:*", "matchCriteriaId": "9418290C-6957-447C-AED8-7C16E0949C29", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, ubuntu-desktop-provision could include the user's password hash in the attached logs."}], "id": "CVE-2025-15480", "lastModified": "2026-04-17T20:18:08.243", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 2.7, "baseSeverity": "LOW", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "UNREPORTED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "LOW", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "security@ubuntu.com", "type": "Secondary"}]}, "published": "2026-04-09T16:16:25.250", "references": [{"source": "security@ubuntu.com", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/canonical/ubuntu-desktop-provision/pull/1399"}, {"source": "security@ubuntu.com", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/canonical/ubuntu-desktop-provision/pull/1400"}], "sourceIdentifier": "security@ubuntu.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1258"}], "source": "security@ubuntu.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "semver", "value": "[0,24.04.4]"}}, {"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,25.10]"}}, {"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,25.04]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Ubuntu", "source": "cna", "vendor": "Canonical"}, "product": "ubuntu", "vendor": "canonical"}], "analysis": {"en": {"generated_at": "2026-04-09T16:50:28.888390+00:00", "value": {"mitigation_remediation": ["Install the latest ubuntu\u2011desktop\u2011provision package (24.04.5 or newer).", "Disable crash reporting or configure it to omit sensitive data from logs during failure."], "summary": {"action": "Patch Now", "impact": "Sensitive data exposure"}, "threat_synthesis": {"affected_systems": "Canonical Ubuntu\u2019s ubuntu\u2011desktop\u2011provision package, version 24.04.4, is affected on Ubuntu 24.04 LTS desktop installations. No other versions or platforms are listed in the advisory.", "description_and_impact": "A flaw in ubuntu-desktop-provision allows the inclusion of a user\u2019s password hash in crash\u2011report logs when an installation fails and a bug report is submitted to Launchpad. The weakness stems from improper handling of credential information during crash reporting, corresponding to CWE\u20111258. If the log files become accessible, an attacker could obtain hashed credentials, compromising account security.", "risk_and_exploitability": "The metric score of 2.7 indicates low severity. No exploitation probability score is available, and the vulnerability is not listed in the KEV catalog. The attack requires a user to trigger a crash during installation, submit a bug report, and then obtain the attached log file from Launchpad or the local system. Thus, exploitation depends on obtaining the crash log, which may be restricted to the local user or an entity with access to the Launchpad account. The likely attack vector is therefore indirect and limited."}}}}, "created": "2026-04-10T08:53:17.858584+00:00", "updated": "2026-04-10T09:32:30.525550+00:00", "vendors": ["canonical", "canonical$PRODUCT$ubuntu"]}