How severe is CVE-2025-66005?

The severity of CVE-2025-66005 has not been assessed with CVSS v3.

CVE-2025-66005

NONE

Lack of authorization of the InputManager D-Bus interface in InputPlumber versions before v0.63.0 can lead to local Denial-of-Service, information leak or even privilege escalation in the context of t

Publicado: 1/14/2026Actualizado: 1/14/2026

Descripción

Lack of authorization of the InputManager D-Bus interface in InputPlumber versions before v0.63.0 can lead to local Denial-of-Service, information leak or even privilege escalation in the context of the currently active user session.

Análisis IAImpulsado por IA

Referencias

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-66005
https://security.opensuse.org/2026/01/09/inputplumber-lack-of-dbus-auth.html