QwikSec

Security Database

CVE

CWE

Training

CVE-2026-25704

Published: Mar 30, 2026

Modified: Apr 16, 2026

PUBLISHED

Description

A Privilege Dropping / Lowering Errors/Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in cosmic-greeter can allow an attacker to regain privileges that should have been dropped and abuse them in the racy checking logic. This issue affects cosmic-greeter before https://github.Com/pop-os/cosmic-greeter/pull/426.

Vendor	Product	Versions
pop-os	cosmic-greeter	affected `? - < https://github.com/pop-os/cosmic-greeter/pull/426`

Weaknesses (CWE)

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-25704

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.