CVE-2025-66433

🗓️ 30 Nov 2025 00:00:00Reported by mitreType

Authenticated users can impersonate others via batch jobs in HTCondor Access Point; earliest affected 24.7.3; fixed in 24.12.14, 25.0.3, 25.3.1.

Reporter	Title	Published	Views	Family All 11
CNNVD	HTCondor Access Point 安全漏洞	30 Nov 202500:00	–	cnnvd
Cvelist	CVE-2025-66433	30 Nov 202500:00	–	cvelist
Debian CVE	CVE-2025-66433	30 Nov 202500:00	–	debiancve
EUVD	EUVD-2025-199922	30 Nov 202506:30	–	euvd
NVD	CVE-2025-66433	30 Nov 202505:16	–	nvd
OSV	DEBIAN-CVE-2025-66433	30 Nov 202505:16	–	osv
Positive Technologies	PT-2025-48384	30 Nov 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-66433	10 Dec 202500:28	–	redhatcve
UbuntuCve	CVE-2025-66433	30 Nov 202505:16	–	ubuntucve
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2025-66433	8 Dec 202500:00	–	nessus

Vulners

CNA

Node

wisc htcondorRange24.7.3–24.12.14

wisc htcondorRange25.0.0–25.0.3

wisc htcondorRange25.1.0–25.3.1

[
  {
    "defaultStatus": "unaffected",
    "product": "HTCondor",
    "vendor": "wisc",
    "versions": [
      {
        "lessThan": "24.12.14",
        "status": "affected",
        "version": "24.7.3",
        "versionType": "custom"
      },
      {
        "lessThan": "25.0.3",
        "status": "affected",
        "version": "25.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "25.3.1",
        "status": "affected",
        "version": "25.1.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
htcondor	www.htcondor.org/security/vulnerabilities/HTCONDOR-2025-0002.html

15 Apr 2026 00:35Current

6Medium risk

Vulners AI Score6

CVSS 3.14.2

EPSS0.00011

SSVC

CWE-863