CVE-2026-41049
Published
CVSS v3
N/A
CVSS v2
N/A
Affected
1
PROJECT
Description
Incorrect caching of authentication between different users of the qSnapper dbus service before version 1.3.3 allowed any local attacker to use dbus functions after a privileged users has authenticated for them.
qSnapper is a Qt6/QML GUI application for managing Btrfs/Snapper snapshots on Linux with D-Bus and PolicyKit integration.
GitHub