vulnerability
Ubuntu: USN-7956-1 (CVE-2025-58181): Google Guest Agent vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Nov 19, 2025 | Jan 14, 2026 | Jan 15, 2026 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Nov 19, 2025
Added
Jan 14, 2026
Modified
Jan 15, 2026
Description
Jakub Ciolek discovered that the Go Cryptography module included in
Google Guest Agent did not validate GSSAPI authentication requests during
SSH operations. An attacker could possibly use this issue to cause a
denial of service.
Solution
ubuntu-pro-upgrade-google-guest-agent
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.