Patric Åhlin

**Name of the Vulnerable Software and Affected Versions** subiquity versions 23.09.1 and earlier **Description** Sensitive data could be exposed in logs. An attacker in the adm group could use this information to find hashed passwords and possibly escalate their privilege. **Recommendations** For subiquity versions 23.09.1 and earlier, update to a version later than 23.09.1 to prevent sensitive data exposure. As a temporary workaround, consider restricting access to log files to minimize the risk of exploitation.