“`html
Cybersecurity analysts have revealed two local privilege escalation (LPE) weaknesses that may be leveraged to obtain root privileges on systems operating prominent Linux distributions.
The vulnerabilities, identified by Qualys, are detailed below –

CVE-2025-6018 – LPE from unprivileged to allow_active in SUSE 15’s Pluggable Authentication Modules (PAM)
CVE-2025-6019 – LPE from allow_active to root in
“`