Improper Authorization Check for SSH Certificate Revocation_CVE-2025-66406

5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H

Description

Step CA is an online certificate authority for secure, automated certificate management for DevOps. Prior to 0.29.0, there is an improper authorization check for SSH certificate revocation. This affects deployments configured with the SSHPOP provisioner. This vulnerability is fixed in 0.29.0.

Basic Information

ID CVE-2025-66406

Source GitHub_M

Published Dec 3, 2025 at 19:13

Modified Dec 3, 2025 at 21:40

Affected Product

Vendor smallstep

Product certificates

Version < 0.29.0

Affected Versions smallstep certificates < 0.29.0

CWE Classification

CWE-863

References

github.com /smallstep/certificates/security/advisories/GHSA-j7c9-79x7-8hpr

{
    "lastseen": "",
    "description": "Step CA is an online certificate authority for secure, automated certificate management for DevOps. Prior to 0.29.0, there is an improper authorization check for SSH certificate revocation. This affects deployments configured with the SSHPOP provisioner. This vulnerability is fixed in 0.29.0.",
    "published": "2025-12-03T19:13:48.240Z",
    "modified": "2025-12-03T21:40:59.681Z",
    "type": "cve",
    "title": "Improper Authorization Check for SSH Certificate Revocation",
    "source": "GitHub_M",
    "references": "https://github.com/smallstep/certificates/security/advisories/GHSA-j7c9-79x7-8hpr",
    "id": "CVE-2025-66406",
    "bulletinFamily": "",
    "cwe": [
        "CWE-863"
    ],
    "cvelist": null,
    "sourceData": "smallstep certificates < 0.29.0",
    "sourceHref": "",
    "cvss": {
        "score": 5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "certificates",
    "version": "< 0.29.0",
    "vendor": "smallstep",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}