Stebalien

**Name of the Vulnerable Software and Affected Versions** captive browser versions prior to 25.11 **Description** The captive browser, a dedicated Chrome instance used for logging into captive portals, contains a flaw. In versions 25.05 and earlier, enabling the `programs.captive-browser` feature allows any user on the system to execute arbitrary commands with the CAP NET RAW capability. This capability permits binding to privileged ports and spoofing localhost traffic from privileged services. **Recommendations** Update to version 25.11 or later.