CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-58015

mediumCVSS 5.9covered by 2 sourcesfirst seen 2026-06-09
A flaw was found in GLib. The D-Bus client-side implementation of the DBUS_COOKIE_SHA1 SASL authentication mechanism does not validate the cookie_context parameter received from the server. A malicious D-Bus server can supply a cookie_context containing path traversal sequences, causing the client to read an arbitrary file and exfiltrate sensitive data by verifying guessed file contents against a generated hash.

CSIRTS triage

What
A path traversal vulnerability exists in 'keyring_lookup_entry' and 'mechanism_client_data_receive'.
Who is affected
Deployments of Glib that utilize the affected functions.
Urgency
Remediation is important due to the medium severity of the vulnerability.
Action
Update to the latest version of Glib to fix this vulnerability.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2026-58015

Get an email if CVE-2026-58015 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (2)

External references

NVD record for CVE-2026-58015

CVE.org record

Embed the live status

CVE-2026-58015 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-58015 status](https://www.csirts.com/badge/CVE-2026-58015)](https://www.csirts.com/cve/CVE-2026-58015)