CVE-2025-62876

MEDIUM

lightdm-kde-greeter <6.0.4 - Privilege Escalation

Title source: llm

Description

A Execution with Unnecessary Privileges vulnerability in lightdm-kde-greeter allows escalation from the service user to root.This issue affects lightdm-kde-greeter. before 6.0.4.

References (2)

[Mailing List] http://www.openwall.com/lists/oss-security/2025/11/17/4

[Issue Tracking] https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-62876

Scores

CVSS v4 5.3

EPSS 0.0002

EPSS Percentile 5.9%

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-250

Status published

Products (1)

SUSE/openSUSE ? - 6.0.4

Published Nov 12, 2025

Tracked Since Feb 18, 2026