CVE-2025-66005

N/A

Descripcion

Lack of authorization of the InputManager D-Bus interface in InputPlumber versions before v0.63.0 can lead to local Denial-of-Service, information leak or even privilege escalation in the context of the currently active user session.

Detalles CVE

Puntuacion CVSS v3.1N/A

Publicado1/14/2026

Ultima modificacion1/14/2026

Fuentenvd

Avistamientos honeypot0

Debilidades (CWE)

CWE-863

Referencias

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-66005(meissner@suse.de)

https://security.opensuse.org/2026/01/09/inputplumber-lack-of-dbus-auth.html(meissner@suse.de)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.