What is the severity of CVE-2025-2903?

The severity of CVE-2025-2903 is classified as high due to the potential for an attacker to gain command-line control over the operating system.

How do I fix CVE-2025-2903?

To fix CVE-2025-2903, ensure proper access controls are implemented on user account creation during VM deployment in Google Cloud Platform.

Who is affected by CVE-2025-2903?

CVE-2025-2903 affects users of Google Cloud Platform OS Login and Delphix that utilize VM deployment features.

What does CVE-2025-2903 allow an attacker to do?

CVE-2025-2903 allows an attacker to log in via SSH and gain command-line control of the operating system.

What should I do if I believe I am impacted by CVE-2025-2903?

If you believe you are impacted by CVE-2025-2903, immediately review your VM access configurations and update your access policies accordingly.

Vulnerability/
CVE-2025-2903

high

8.5

CWE

268 267

17/4/2025

CVE-2025-2903: Privilege Chaining in Delphix

First published: Thu Apr 17 2025(Updated: )

An attacker with knowledge of creating user accounts during VM deployment on Google Cloud Platform (GCP) using the OS Login feature, can login via SSH gaining command-line control of the operating system. This allows an attacker to gain access to sensitive data stored on the VM, install malicious software, and disrupt or disable the functionality of the VM.

Credit: security@puppet.com

Affected Software	Affected Version	How to fix
Google Cloud Platform OS Login
Delphix

Never miss a vulnerability like this again

Reference Links

https://portal.perforce.com/s/detail/a91PA000001Sed3YAC

Frequently Asked Questions

What is the severity of CVE-2025-2903?
The severity of CVE-2025-2903 is classified as high due to the potential for an attacker to gain command-line control over the operating system.
How do I fix CVE-2025-2903?
To fix CVE-2025-2903, ensure proper access controls are implemented on user account creation during VM deployment in Google Cloud Platform.
Who is affected by CVE-2025-2903?
CVE-2025-2903 affects users of Google Cloud Platform OS Login and Delphix that utilize VM deployment features.
What does CVE-2025-2903 allow an attacker to do?
CVE-2025-2903 allows an attacker to log in via SSH and gain command-line control of the operating system.
What should I do if I believe I am impacted by CVE-2025-2903?
If you believe you are impacted by CVE-2025-2903, immediately review your VM access configurations and update your access policies accordingly.

collector/mitre-cve
source/MITRE
agent/title
agent/references
agent/first-publish-date
agent/weakness
agent/description
agent/type
collector/nvd-api
source/NVD
agent/author
agent/source
agent/severity
agent/last-modified-date
agent/event
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/google
canonical/google cloud platform os login
vendor/delphix
canonical/delphix

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.