30/10/2025

ZDI-25-974: X.Org Server XkbRemoveResourceClient Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2025-62230.

Comments are closed.

You may also like

ZDI-25-931: MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability

ZDI-25-1137: GIMP LBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability