{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-11T16:01:51.861","vulnerabilities":[{"cve":{"id":"CVE-2025-23386","sourceIdentifier":"meissner@suse.de","published":"2025-04-10T10:15:14.697","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A Incorrect Default Permissions vulnerability in the openSUSE Tumbleweed package gerbera allows the service user gerbera to escalate to root.,This issue affects gerbera on openSUSE Tumbleweed before 2.5.0-1.1."},{"lang":"es","value":"Una vulnerabilidad de permisos predeterminados incorrectos en el paquete gerbera de openSUSE Tumbleweed permite que el usuario de servicio gerbera escale a root. Este problema afecta a gerbera en openSUSE Tumbleweed anterior a 2.5.0-1.1."}],"metrics":{"cvssMetricV31":[{"source":"meissner@suse.de","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"meissner@suse.de","type":"Secondary","description":[{"lang":"en","value":"CWE-276"}]}],"references":[{"url":"https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-23386","source":"meissner@suse.de"}]}}]}