Xdg-desktop-portal CVEs and Security Vulnerabilities

Filtered by vendor Flatpak Subscriptions

Filtered by product Xdg-desktop-portal Subscriptions

Switch to Advanced Search (Beta)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-40354	1 Flatpak	1 Xdg-desktop-portal	2026-04-13	2.9 Low
Flatpak xdg-desktop-portal before 1.20.4 and 1.21.x before 1.21.1 allows any Flatpak app to trash any file in the host context via a symlink attack on g_file_trash.

Page 1 of 1.