A vulnerability was found in KylinSoft hedron-domain-hook up to 3.8.0.12-0k0.5. It has been declared as critical. This vulnerability affects the function
init_kcm
of the component DBus Handler. The manipulation leads to improper access controls.
This vulnerability was named CVE-2023-7025. Attacking locally is a requirement. Furthermore, there is an exploit available.
The vendor was contacted early about this disclosure but did not respond in any way.