CVE-2025-53391

Name of the Vulnerable Software and Affected Versions: zuluCrypt version 6.2.0-1

Description: The Debian zuluPolkit/CMakeLists.txt file for zuluCrypt has insecure PolicyKit settings, including allow any, allow inactive, and allow active, which allow a local user to escalate their privileges to root. This issue enables local privilege escalation.

Recommendations: For zuluCrypt version 6.2.0-1, consider disabling the allow any, allow inactive, and allow active settings in the PolicyKit configuration to mitigate the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.