CVE-2026-25740

Sažetak

captive browser, a dedicated Chrome instance to log into captive portals without messing with DNS settings. In 25.05 and earlier, when programs.captive-browser is enabled, any user of the system can run arbitrary commands with the CAP_NET_RAW capability (binding to privileged ports, spoofing localhost traffic from privileged services...). This vulnerability is fixed in 25.11 and 26.05.

Reference

https://github.com/NixOS/nixpkgs/pull/487775
https://github.com/NixOS/nixpkgs/pull/487779
https://github.com/NixOS/nixpkgs/security/advisories/GHSA-wc3r-c66x-8xmc

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

09-02-2026 - 21:55

Objavljeno

09-02-2026 - 21:15