CVE-2026-58015

MEDIUM

Glib: path traversal in glib/gio/gdbusauthmechanismsha1.c via keyring_lookup_entry and mechanism_client_data_receive

Title source: cna
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-58015. PoCs published by HermesNA-1.

AI-analyzed exploit summary This repository contains an auto-generated stub module for CVE-2026-58015, a flaw in GLib's D-Bus client-side implementation of the DBUS_COOKIE_SHA1 SASL authentication mechanism. The code includes placeholder methods (`check` and `run`) but lacks actual exploit logic or technical details for exploitation.

Description

A flaw was found in GLib. The D-Bus client-side implementation of the DBUS_COOKIE_SHA1 SASL authentication mechanism does not validate the cookie_context parameter received from the server. A malicious D-Bus server can supply a cookie_context containing path traversal sequences, causing the client to read an arbitrary file and exfiltrate sensitive data by verifying guessed file contents against a generated hash.

Exploits (1)

github STUB 1 stars
by HermesNA-1 · pythonpoc
https://github.com/HermesNA-1/SnakeSploit/tree/main/data/modules_generated/cve-2026-58015_flaw_was_found.py

This repository contains an auto-generated stub module for CVE-2026-58015, a flaw in GLib's D-Bus client-side implementation of the DBUS_COOKIE_SHA1 SASL authentication mechanism. The code includes placeholder methods (`check` and `run`) but lacks actual exploit logic or technical details for exploitation.

Classification
Stub 98%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Theoretical
Target: GLib (D-Bus client-side implementation)
No auth needed
Prerequisites: Target must expose a D-Bus service using DBUS_COOKIE_SHA1 SASL authentication · Network access to the target service
mistral-large-3 · analyzed Jul 09, 2026 Full analysis →

References (3)

Core 3
Core References
Vdb Entry, X_Refsource_Redhat vdb-entry x_refsource_redhat
https://access.redhat.com/security/cve/CVE-2026-58015
Issue Tracking, X_Refsource_Redhat issue-tracking x_refsource_redhat
RHBZ#2492256
https://bugzilla.redhat.com/show_bug.cgi?id=2492256

Scores

CVSS v3 5.9
EPSS 0.0042
EPSS Percentile 33.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-22
Status published
Products (13)
GNOME/GLib < 2.88.1
gnome/glib < 2.88.1
Red Hat/Red Hat Enterprise Linux 10
Red Hat/Red Hat Enterprise Linux 6
Red Hat/Red Hat Enterprise Linux 7
Red Hat/Red Hat Enterprise Linux 8
Red Hat/Red Hat Enterprise Linux 9
Red Hat/Red Hat Hardened Images
redhat/enterprise_linux 6.0
redhat/enterprise_linux 7.0
... and 3 more
Published Jun 30, 2026
Tracked Since Jun 30, 2026