Loading market data...
← Back to CVE feed

CVE-2026-10294

MEDIUM CVSS 4.3 View on NVD ↗

Description

A vulnerability has been found in PackageKit up to 1.3.5. Affected is the function g_file_test of the file src/pk-transaction.c of the component API. Such manipulation of the argument frontend-socket leads to improper authorization. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Published: Jun 01, 2026 22:16 UTC Modified: Jun 02, 2026 13:03 UTC