CVE-2025-53819

Summary

Nix is a package manager for Linux and other Unix systems. Builds with Nix 2.30.0 on macOS were executed with elevated privileges (root), instead of the build users. The fix was applied to Nix 2.30.1. No known workarounds are available.

Affected Software

VendorProductVersion RangeStatus
NixOSnix= 2.30.0affected

Weaknesses

  • CWE-271: CWE-271: Privilege Dropping / Lowering Errors

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References