{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-41525", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-28T13:44:54.714Z", "dateReserved": "2026-04-20T00:00:00.000Z", "datePublished": "2026-04-28T00:00:00.000Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Dolphin", "vendor": "KDE", "versions": [{"lessThan": "25.12.3", "status": "affected", "version": "0", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "KDE Dolphin before 25.12.3 allows applications in a Flatpak (or with AppArmor confinement) to open folders outside of the application sandbox without additional scrutiny. Dolphin's implementation of the FileManager1 protocol allows the path given to be any type of file, including scripts or executables. (By default, Dolphin will then prompt the user to determine if they want to launch a script or executable; however, the intended behavior is to block the attempted action, not present a consent prompt.)"}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-669", "description": "CWE-669 Incorrect Resource Transfer Between Spheres", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-28T07:02:46.536Z"}, "references": [{"url": "https://invent.kde.org/system/dolphin/"}, {"url": "https://github.com/KDE/dolphin/releases/tag/v25.12.3"}, {"url": "https://kde.org/info/security/advisory-20260427-2.txt"}], "x_generator": {"engine": "enrichogram 0.0.1"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-28T13:39:30.204900Z", "id": "CVE-2026-41525", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-28T13:44:54.714Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-41525", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-28T13:39:30.204900Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-28T13:40:11.678Z"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "KDE", "product": "Dolphin", "versions": [{"status": "affected", "version": "0", "lessThan": "25.12.3", "versionType": "custom"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://invent.kde.org/system/dolphin/"}, {"url": "https://github.com/KDE/dolphin/releases/tag/v25.12.3"}, {"url": "https://kde.org/info/security/advisory-20260427-2.txt"}], "x_generator": {"engine": "enrichogram 0.0.1"}, "descriptions": [{"lang": "en", "value": "KDE Dolphin before 25.12.3 allows applications in a Flatpak (or with AppArmor confinement) to open folders outside of the application sandbox without additional scrutiny. Dolphin's implementation of the FileManager1 protocol allows the path given to be any type of file, including scripts or executables. (By default, Dolphin will then prompt the user to determine if they want to launch a script or executable; however, the intended behavior is to block the attempted action, not present a consent prompt.)"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-669", "description": "CWE-669 Incorrect Resource Transfer Between Spheres"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-28T07:02:46.536Z"}}}, "cveMetadata": {"cveId": "CVE-2026-41525", "state": "PUBLISHED", "dateUpdated": "2026-04-28T13:44:54.714Z", "dateReserved": "2026-04-20T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-28T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "KDE Dolphin before 25.12.3 allows applications in a Flatpak (or with AppArmor confinement) to open folders outside of the application sandbox without additional scrutiny. Dolphin's implementation of the FileManager1 protocol allows the path given to be any type of file, including scripts or executables. (By default, Dolphin will then prompt the user to determine if they want to launch a script or executable; however, the intended behavior is to block the attempted action, not present a consent prompt.)"}], "id": "CVE-2026-41525", "lastModified": "2026-04-28T08:16:01.477", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 5.5, "source": "cve@mitre.org", "type": "Secondary"}]}, "published": "2026-04-28T08:16:01.477", "references": [{"source": "cve@mitre.org", "url": "https://github.com/KDE/dolphin/releases/tag/v25.12.3"}, {"source": "cve@mitre.org", "url": "https://invent.kde.org/system/dolphin/"}, {"source": "cve@mitre.org", "url": "https://kde.org/info/security/advisory-20260427-2.txt"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-669"}], "source": "cve@mitre.org", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,25.12.3)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Dolphin", "source": "cna", "vendor": "KDE"}, "product": "dolphin", "vendor": "kde"}], "analysis": {"en": {"generated_at": "2026-04-28T12:37:06.784632+00:00", "value": {"mitigation_remediation": ["Update KDE Dolphin to version 25.12.3 or later, which includes the FileManager1 path validation fix.", "For Flatpak users, revoke or reduce the permissions of sandboxed applications that communicate with Dolphin, or temporarily disable the FileManager1 protocol until a patch is applied.", "Ensure Dolphin's AppArmor profile prohibits arbitrary path access and replace it with the updated profile released by KDE once available."], "summary": {"action": "Patch Now", "impact": "Sandbox Escape / Restricted Access Bypass"}, "threat_synthesis": {"affected_systems": "KDE Dolphin versions earlier than 25.12.3 are affected. This includes all releases of Dolphin distributed by KDE prior to the v25.12.3 update.", "description_and_impact": "The vulnerability resides in the Dolphin FileManager1 protocol implementation, which allows an application running inside a Flatpak or AppArmor sandbox to supply a path that points to any file, including scripts or executables, located outside the sandbox.\nThe intended behaviour of Dolphin is to block such actions, but the current implementation incorrectly presents a user\u2011confirmation prompt, effectively permitting the action. This flaw permits the sandboxed application to read, write, or execute arbitrary files outside its confinement, undermining the isolation guarantees and enabling possible privilege escalation or data exfiltration.", "risk_and_exploitability": "The CVSS score of 6.5 indicates moderate severity. No EPSS score is available, and the vulnerability is not listed in the CISA KEV catalog. The exploit requires an application able to communicate with Dolphin via the FileManager1 protocol; this is typically a Flatpak or AppArmor confined application. Because the flaw permits arbitrary file system access beyond the sandbox boundaries, it can be used to read sensitive data or execute malicious code. The lack of a confirmed public exploit suggests the risk remains theoretical, but the flaw provides a clear pathway for privilege escalation that should be addressed promptly."}}}}, "created": "2026-04-28T09:16:40.287362+00:00", "title": "Dolphin Flatpak Confinement Bypass via FileManager1 Path Spoofing", "updated": "2026-04-28T12:45:31.387708+00:00", "vendors": ["kde", "kde$PRODUCT$dolphin"]}