AZL-11092 CVE-2022-42011 affecting package dbus for versions less than 1.15.2-2

🗓️ 10 Oct 2022 00:15:09Reported by GoogleType

osv🔗 osv.dev👁 1 Views

CVE-2022-42011 affects dbus before 1.15.2-2; authenticated attackers can crash dbus-daemon via array length mismatch.

Reporter	Title	Published	Views	Family All 169
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs	30 Mar 202315:19	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to multiple Freedesktop D-Bus denial of service vulnerability	6 Jul 202317:04	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	7 Jun 202316:53	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities have been identified in OpenSSL, Apache HTTP Server and other system libraries shipped with the DS8000 Hardware Management Console (HMC)	12 Jul 202311:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in Freedesktop D-Bus (CVE-2022-42011)	31 Mar 202317:53	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in D-Bus (CVE-2022-42010, CVE-2022-42011 and CVE-2022-42012) affects Power HMC	24 Apr 202308:09	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.	30 Mar 202316:55	–	ibm
Tenable Nessus	Amazon Linux 2022 : dbus (ALAS2022-2022-260)	4 Jan 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : dbus, dbus-common, dbus-daemon (ALAS2023-2023-100)	21 Mar 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : dbus (ALAS-2023-2006)	5 Apr 202300:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-42011

21 Apr 2026 04:21Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.16.5

EPSS0.00131