CVE-2025-66406 MEDIUM

CVE-2025-66406: Improper Authorization Check for SSH Certificate Revocation

Vendor Smallstep
Product certificates
Weakness CWE-863 · Incorrect authorization
Published December 3, 2025
Last update December 3, 2025

CVSS base score

5.0/10
Attack vector Network
Attack complexity High
Privileges required High
User interaction None
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H

What the vulnerability does

01Description

Step CA is an online certificate authority for secure, automated certificate management for DevOps. Prior to 0.29.0, there is an improper authorization check for SSH certificate revocation. This affects deployments configured with the SSHPOP provisioner. This vulnerability is fixed in 0.29.0.

Key dates

02Disclosure timeline

December 3, 2025 CVE published
December 3, 2025 Record updated