CVE-2026-41046 - Vulnerability Details - OpenCVE

ReportizFlow

A path traversal attack when using a "configName" parameter in qSnapper before version 1.3.3 allowed a local attacker to use malicious config files for snapper and so cause a denial of service or potentially escalate privileges to root.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Presire	Qsnapper

No data.

No data.

References

Link	Providers
https://bugzilla.suse.com/show_bug.cgi?id=1261889
https://github.com/presire/qSnapper/releases/tag/v1.3.3
https://security.opensuse.org/2026/05/26/qsnapper-dbus-issues.html#issue-path-traversal

History

Tue, 23 Jun 2026 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Presire Presire qsnapper
Vendors & Products		Presire Presire qsnapper

Mon, 22 Jun 2026 18:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Mon, 22 Jun 2026 15:45:00 +0000

Type	Values Removed	Values Added
Description		A path traversal attack when using a "configName" parameter in qSnapper before version 1.3.3 allowed a local attacker to use malicious config files for snapper and so cause a denial of service or potentially escalate privileges to root.
Title		path traversal via `config` parameter in qSnapper
Weaknesses		CWE-23
References		https://bugzilla.suse.com/show_bug.cgi?id=1261889 https://github.com/presire/qSnapper/releases/tag/v1.3.3 https://security.opensuse.org/2026/05/26/qsnapper-dbus-issues.html#issue-path-traversal
Metrics		cvssV3_1 `{'score': 7.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H'}`

MITRE

Status: PUBLISHED

Assigner: suse

Published: 2026-06-22T15:20:30.872Z

Updated: 2026-06-22T16:23:53.645Z

Reserved: 2026-04-16T13:37:50.679Z

Link: CVE-2026-41046

Vulnrichment

Updated: 2026-06-22T16:23:48.894Z

NVD

No data.

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-41046", "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "state": "PUBLISHED", "assignerShortName": "suse", "dateReserved": "2026-04-16T13:37:50.679Z", "datePublished": "2026-06-22T15:20:30.872Z", "dateUpdated": "2026-06-22T16:23:53.645Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2026-06-22T15:20:30.872Z"}, "title": "path traversal via `config` parameter in qSnapper", "datePublic": "2026-05-26T15:09:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-23", "description": "CWE-23 Relative path traversal", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-17", "descriptions": [{"lang": "en", "value": "CAPEC-17 Using Malicious Files"}]}], "affected": [{"vendor": "presire", "product": "qSnapper", "packageName": "qsnapper", "repo": "https://github.com/presire/qSnapper", "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.3", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "A path traversal attack when using a \"configName\" parameter in qSnapper before version 1.3.3 allowed a local attacker to use malicious config files for snapper and so cause a denial of service or potentially escalate privileges to root.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "A path traversal attack when using a \"configName\" parameter in qSnapper before version 1.3.3 allowed a local attacker to use malicious config files for snapper and so cause a denial of service or potentially escalate privileges to root."}]}], "references": [{"url": "https://security.opensuse.org/2026/05/26/qsnapper-dbus-issues.html#issue-path-traversal", "tags": ["third-party-advisory"]}, {"url": "https://github.com/presire/qSnapper/releases/tag/v1.3.3", "tags": ["vendor-advisory"]}, {"url": "https://bugzilla.suse.com/show_bug.cgi?id=1261889", "tags": ["issue-tracking"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "HIGH", "baseSeverity": "HIGH", "baseScore": 7.3, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H"}}], "credits": [{"lang": "en", "value": "Matthias Gerstner of SUSE", "type": "finder"}], "source": {"discovery": "INTERNAL"}, "x_generator": {"engine": "Vulnogram 1.0.2"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-06-22T16:23:42.492038Z", "id": "CVE-2026-41046", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-06-22T16:23:53.645Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-41046", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-06-22T16:23:42.492038Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-06-22T16:23:48.894Z"}}], "cna": {"title": "path traversal via `config` parameter in qSnapper", "source": {"discovery": "INTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Matthias Gerstner of SUSE"}], "impacts": [{"capecId": "CAPEC-17", "descriptions": [{"lang": "en", "value": "CAPEC-17 Using Malicious Files"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.3, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"repo": "https://github.com/presire/qSnapper", "vendor": "presire", "product": "qSnapper", "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.3", "versionType": "semver"}], "packageName": "qsnapper", "defaultStatus": "unaffected"}], "datePublic": "2026-05-26T15:09:00.000Z", "references": [{"url": "https://security.opensuse.org/2026/05/26/qsnapper-dbus-issues.html#issue-path-traversal", "tags": ["third-party-advisory"]}, {"url": "https://github.com/presire/qSnapper/releases/tag/v1.3.3", "tags": ["vendor-advisory"]}, {"url": "https://bugzilla.suse.com/show_bug.cgi?id=1261889", "tags": ["issue-tracking"]}], "x_generator": {"engine": "Vulnogram 1.0.2"}, "descriptions": [{"lang": "en", "value": "A path traversal attack when using a \"configName\" parameter in qSnapper before version 1.3.3 allowed a local attacker to use malicious config files for snapper and so cause a denial of service or potentially escalate privileges to root.", "supportingMedia": [{"type": "text/html", "value": "A path traversal attack when using a \"configName\" parameter in qSnapper before version 1.3.3 allowed a local attacker to use malicious config files for snapper and so cause a denial of service or potentially escalate privileges to root.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-23", "description": "CWE-23 Relative path traversal"}]}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2026-06-22T15:20:30.872Z"}}}, "cveMetadata": {"cveId": "CVE-2026-41046", "state": "PUBLISHED", "dateUpdated": "2026-06-22T16:23:53.645Z", "dateReserved": "2026-04-16T13:37:50.679Z", "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "datePublished": "2026-06-22T15:20:30.872Z", "assignerShortName": "suse"}, "dataVersion": "5.2"}