Description
Incorrect caching of authentication between different polkit methods in qSnapper before version 1.3.3 allowed a local attacker to use functions like "restore from snapshot" even if only allowed to do "delete snapshot".
Published: 2026-06-22
Score: 8.4 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

qSnapper improperly cached authentication states between different polkit methods. The flaw allowed a local user who could delete snapshots to use the otherwise unauthorized restore‑from‑snapshot functionality, effectively bypassing intended authorization checks. The vulnerability falls under CWE‑863, which concerns authorization errors. Based on the description, it is inferred that a local attacker who can delete snapshots can use the restore‑from‑snapshot function, an operation for which they lack explicit permission, thereby bypassing intended authorization checks.

Affected Systems

All customers running presire:qSnapper versions prior to 1.3.3 are affected. The unpatched code path exists in releases before 1.3.3, which users should upgrade to the latest version to eliminate the issue.

Risk and Exploitability

The CVSS score of 8.4 indicates a high severity flaw. The EPSS score is <1%, indicating a very low but non‑zero probability of exploitation, and the vulnerability is not listed in the CISA KEV catalog. The attack vector is local: an attacker must be able to execute user‑level code or have permission to delete snapshots, then invoke the restore capability, which will consult the stale authentication cache and incorrectly allow the operation.

Generated by OpenCVE AI on July 12, 2026 at 11:10 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update qSnapper to version 1.3.3 or later, which removes the cached authentication vulnerability.
  • Ensure that the installation uses the vendor’s signed packages to verify the authenticity of the update.
  • Disable or restrict polkit delete‑snapshot permissions for all non‑trusted users until the application has been updated.

Generated by OpenCVE AI on July 12, 2026 at 11:10 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 07 Jul 2026 10:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-303 CWE-863

Tue, 23 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
First Time appeared Presire
Presire qsnapper
Vendors & Products Presire
Presire qsnapper

Mon, 22 Jun 2026 17:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 22 Jun 2026 15:45:00 +0000

Type Values Removed Values Added
Description Incorrect caching of authentication between different polkit methods in qSnapper before version 1.3.3 allowed a local attacker to use functions like "restore from snapshot" even if only allowed to do "delete snapshot".
Title Caching of Authentication allows Authentication Bypass in qSnapper
Weaknesses CWE-303
References
Metrics cvssV4_0

{'score': 8.4, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}


Subscriptions

Presire Qsnapper
cve-icon MITRE

Status: PUBLISHED

Assigner: suse

Published:

Updated: 2026-07-07T09:31:37.959Z

Reserved: 2026-04-16T13:37:50.679Z

Link: CVE-2026-41048

cve-icon Vulnrichment

Updated: 2026-06-22T16:24:53.612Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-12T11:15:16Z

Weaknesses