CNNVD-202601-2457 Information

CNNVD ID

CNNVD-202601-2457

Related CVE

CVE-2025-66005

• CNNVD Published: 2026-01-14

Description (Chinese)

InputPlumber是ShadowBlip开源的一个输入设备路由守护进程。 InputPlumber v0.63.0之前版本存在安全漏洞，该漏洞源于缺少授权，可能导致本地拒绝服务、信息泄露或权限提升。

Description (English)

InputPlumber is an input device routed daemon from the ShadowBlip open source. There was a security loophole in the pre-InputPlumber v. 0.63.0, which stemmed from a lack of authorization, which could lead to local denials of services, information leaks or enhanced privileges.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

ShadowBlip

Published

2026-01-14

Last Modified

2026-02-24

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-66005 https://security.opensuse.org/2026/01/09/inputplumber-lack-of-dbus-auth.html

Patch

https://github.com/ShadowBlip/InputPlumber/releases