NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-25710

Summary	The new upstream added a privileged D-Bus helper called plasmaloginauthhelper, which suffers from multiple issues, e.g.aA compromised plasmalogin service account can chown() arbitrary files in the system.
Publication Date	May 13, 2026, 10:01 p.m.
Registration Date	May 15, 2026, 4:19 a.m.
Last Update	May 14, 2026, 12:35 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-25710	meissner@suse.de
2	https://security.opensuse.org/2026/04/27/plasma-login-manager.html#6-upstream-bugfix	meissner@suse.de
3	http://www.openwall.com/lists/oss-security/2026/04/27/1	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-250	不要な特権による実行	https://cwe.mitre.org/data/definitions/250.html