Gitlab Simgear vulnerabilities

CVE-2025-0781 [CRITICAL] CWE-863 Incorrect Authorization in SimGear Incorrect Authorization in SimGear An attacker can bypass the sandboxing of Nasal scripts and arbitrarily write to any file path that the user has permission to modify at the operating-system level. Affected products: SimGear Affected versions: 0 (affected) Solution: Upgrade to FlightGear version 2020.3.20 or 2024.1.1. Credit: Florent Rougon