A flaw was found in the users crate for Rust. This vulnerability allows privilege escalation via incorrect group listing when a user or process has fewer than exactly 1024 groups, leading to the erroneous inclusion of the root group in the access list.
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.