Polkit authentication dis isabled by default and a race condition in the Polkit authorization check in versions before v0.69.0 can lead to the same issues as in CVE-2025-66005.CreditsMatthias Gerstner of SUSEReferenceshttps://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-14338https://security.opensuse.org/2026/01/09/inputplumber-lack-of-dbus-auth.html
