CVE-2026-4105 Systemd: systemd: privilege escalation via improper access control in registermachine d-bus method

🗓️ 13 Mar 2026 08:52:08Reported by redhatType

Unprivileged user exploits systemd RegisterMachine D-Bus to create attacker-controlled machine and escalate to root.

Reporter	Title	Published	Views	Family All 67
ATTACKERKB	CVE-2026-4105	13 Mar 202608:52	–	attackerkb
Circl	CVE-2026-4105	13 Mar 202621:02	–	circl
CNNVD	Red Hat Enterprise Linux 访问控制错误漏洞	13 Mar 202600:00	–	cnnvd
CVE	CVE-2026-4105	13 Mar 202608:52	–	cve
Debian	[SECURITY] [DLA 4533-1] systemd security update	15 Apr 202605:26	–	debian
Debian CVE	CVE-2026-4105	13 Mar 202608:52	–	debiancve
Tenable Nessus	Debian dla-4533 : libnss-myhostname - security update	20 Apr 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : systemd (EulerOS-SA-2026-2229)	9 Jun 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : systemd (EulerOS-SA-2026-2266)	9 Jun 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : systemd (EulerOS-SA-2026-2315)	10 Jun 202600:00	–	nessus

[
  {
    "vendor": "Red Hat",
    "product": "Red Hat Hardened Images",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "systemd-main",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "260.1-2.1.hum1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:hummingbird:1"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 10",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "NetworkManager",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:10"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 10",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rpm-ostree",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:10"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 10",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "systemd",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:10"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "systemd",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "NetworkManager",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "systemd",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "NetworkManager",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "systemd",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "NetworkManager",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:openshift:4"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rhcos",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:openshift:4"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "systemd",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:openshift:4"
    ]
  }
]

Source	Link
access	www.access.redhat.com/security/cve/CVE-2026-4105
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/errata/RHSA-2026:7299
github	www.github.com/systemd/systemd/security/advisories/GHSA-4h6x-r8vx-3862

30 Apr 2026 16:59Current

CVSS 3.16.7

EPSS0.0001

CWE-284

systemd RegisterMachine D Bus privilege escalation root access improper access