New Linux udisks flaw lets attackers get root on major Linux distros

June 18, 2025

New Linux udisks flaw lets attackers get root on major Linux distros

Attackers can exploit two newly discovered local privilege escalation (LPE) vulnerabilities to gain root privileges on systems running major Linux distributions.
The first flaw (tracked as CVE-2025-60 …

Published Date:
Jun 18, 2025 (5 hours, 49 minutes ago)

Vulnerabilities has been mentioned in this article.

Source: Read More

Previous ArticleBeyondTrust warns of pre-auth RCE in Remote Support software

Next Article Cyberagentschap VS meldt actief misbruik van lek in Linux-kernel

Highlights

CVE-2025-5588 – Pixo Image Editor for WordPress Stored Cross-Site Scripting Vulnerability

June 26, 2025

CVE ID : CVE-2025-5588

Published : June 26, 2025, 2:15 a.m. | 2 hours, 52 minutes ago

Description : The Image Editor by Pixo plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘download’ parameter in all versions up to, and including, 2.3.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Techland drops a new trailer for Dying Light: The Beast with a release date during Summer Game Fest

June 7, 2025

Introduction to SwiftUI [SUBSCRIBER]

September 21, 2025

I’ve fallen hard for Starsand Island, a promising anime-style life sim bringing Ghibli vibes to Xbox and PC later this year

June 2, 2025

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

Development Release: Ubuntu 25.10 Beta

Development Release: Linux Mint 7 Beta “LMDE”

Student Performance Prediction System using Python Machine Learning (ML)

Student Performance Prediction System using Python Machine Learning (ML)

The attack on the npm ecosystem continues

Feature Highlight

Hyprland Made Easy: Preconfigured Beautiful Distros

Hyprland Made Easy: Preconfigured Beautiful Distros

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

New Linux udisks flaw lets attackers get root on major Linux distros

New Linux udisks flaw lets attackers get root on major Linux distros

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Distribution Release: Melawy Linux 2025.07.04

Gigabyte motherboards vulnerable to UEFI malware bypassing Secure Boot

Your Garmin watch just got a major upgrade that makes traveling so much easier

CVE-2025-52558 – changedetection.io Cross-Site Scripting (XSS)

CVE-2025-5588 – Pixo Image Editor for WordPress Stored Cross-Site Scripting Vulnerability

Techland drops a new trailer for Dying Light: The Beast with a release date during Summer Game Fest

Introduction to SwiftUI [SUBSCRIBER]

I’ve fallen hard for Starsand Island, a promising anime-style life sim bringing Ghibli vibes to Xbox and PC later this year

New Linux udisks flaw lets attackers get root on major Linux distros

New Linux udisks flaw lets attackers get root on major Linux distros

Related Posts