CVE-2026-10294 | PackageKit up to 1.3.5 API src/pk-transaction.c g_file_test frontend-socket improper authorization (Issue 969)

Inserito da Angelo Barbosa | Mag 31, 2026 | CVE

A vulnerability, which was classified as problematic, was found in PackageKit up to 1.3.5. Affected is the function g_file_test of the file src/pk-transaction.c of the component API. Such manipulation of the argument frontend-socket leads to improper authorization.

This vulnerability is documented as CVE-2026-10294. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2026-10294 | PackageKit up to 1.3.5 API src/pk-transaction.c g_file_test frontend-socket improper authorization (Issue 969)

Post correlati

CVE-2024-1662 | PORTY Smart Tech Technology Joint Stock Company PowerBank Application up to 2.01 information disclosure

CVE-2024-1194 | Armcode AlienIP 2.41 Locate Host denial of service

CVE-2024-56354 | JetBrains TeamCity up to 2024.11 Password Field insufficiently protected credentials

CVE-2025-7887 | Zavy86 WikiDocs up to 1.0.78 template.inc.php path cross site scripting (Issue 256)