The id utility in the uutils coreutils suite incorrectly resolves the user name for the effective UID when pretty print mode is enabled. The implementation uses the effective GID in the name lookup, causing the effective user name to be mapped to the group name. This produces misleading diagnostic output that can mislead automated scripts or system administrators into making incorrect decisions about file permissions or access control. The weakness is classified as CWE‑451, "Insufficient Output Validation."

The vulnerability affects the uutils coreutils collection, specifically the id command. No precise version information is provided in the advisory; all releases prior to the patch that corrects the name lookup are potentially impacted. The product is open‑source and commonly used on Linux‑like systems that rely on uutils coreutils for POSIX‑like utilities.

This flaw only misreports identity information for consumers of pretty print output; it does not enable privilege escalation or direct code execution. The CVSS score of 3.3 reflects a low severity risk limited to local observation. EPSS data is unavailable, and the vulnerability is not listed in the CISA KEV catalog, indicating a small exploitation chance. The most likely attack vector requires local access to the system and unprotected scripts that parse id output. Attackers could attempt to manipulate such scripts that base permission decisions on the misreported user name, potentially leading to policy violations. The actual impact for an attacker is therefore indirect, limited to mishandled automation rather than direct compromise.