anonhaven
Ad

CVE-2025-62876

MEDIUM CVSS 4.0: 5.3 EPSS 0.02%
Updated Feb 26, 2026
Suse
Parameter Value
CVSS 5.3 (MEDIUM)
Affected Versions before 6.0.4.
Type CWE-250
Vendor Suse
Public PoC No

A Execution with Unnecessary Privileges vulnerability in lightdm-kde-greeter allows escalation from the service user to root.This issue affects lightdm-kde-greeter. before 6.0.4.

Attack Parameters

Attack Vector
Local
Requires local access
Attack Complexity
Low
Easy to exploit
Attack Requirements
None
No additional conditions
Privileges Required
Low
Basic privileges needed
User Interaction
Passive
Minimal interaction

Impact Assessment

Confidentiality
Low
Partial data leak
Integrity
High
Complete data modification
Availability
High
Complete denial of service

CVSS Vector v4.0

Weakness Type (CWE)

CWE-250

Vulnerable Products

suse:opensuse

References 2

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-62876
meissner@suse.de
http://www.openwall.com/lists/oss-security/2025/11/17/4
af854a3a-2127-422b-91ae-364da2661108
Share Post Share Share Share

Related Vulnerabilities

CVE-2025-62879

Suse

4.9

CVE-2025-53883

Suse

9.3

CVE-2025-53880

Suse

8.7

CVE-2024-12087

Almalinux

7.5

CVE-2024-12086

Almalinux

6.8