216.73.217.64

CVE-2026-25710

· Published 13/05/2026 13:01 · Modified 13/05/2026 15:35

Labels: CVE-2026-25710 2026-05-13CVE-2026-25710CWE-250[email protected]

Essential information

Published
13/05/2026 13:01
Modified
13/05/2026 15:35
Author
Creator
CVSS
7.0 HIGH (v3) 7.0 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

The new upstream added a privileged D-Bus helper called plasmaloginauthhelper, which suffers from multiple issues, e.g.aA compromised plasmalogin service account can chown() arbitrary files in the system.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
plasmalogin / plasmalogin cpe:2.3:a:plasmalogin:plasmalogin:*:*:*:*:*:*:*:*
suse / linux cpe:2.3:o:suse:linux:*-*-*:*:*:*:*:*:*:*

References