MiracleLinux 8 : usbguard-1.0.0-8.el8.2 (AXSA:2023-4807:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4807:01 advisory. usbguard: Fix unauthorized access via D-Bus CVE-2019-25058 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : usbguard-1.0.0-10.el9.2 (AXSA:2023-5072:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5072:02 advisory. usbguard: Fix unauthorized access via D-Bus CVE-2019-25058 Tenable has extracted the preceding description block directly from the MiracleLinux security...

TencentOS Server 3: usbguard (TSSA-2023:0008)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0008 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

Alibaba Cloud Linux 3 : 0015: usbguard (ALINUX3-SA-2023:0015)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0015 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-25058: An issue was discovered in USBGuard...

Linux Distros Unpatched Vulnerability : CVE-2019-25058

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in USBGuard before 1.1.0. On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow all USB devic...

CentOS 8 : usbguard (CESA-2023:0087)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:0087 advisory. - usbguard: Fix unauthorized access via D-Bus CVE-2019-25058 Note that Nessus has not tested for this issue but has instead relied only on the application's...

Rocky Linux 8 : usbguard (RLSA-2023:0087)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:0087 advisory. - An issue was discovered in USBGuard before 1.1.0. On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow all USB...

CVE-2019-25058 affecting package usbguard for versions less than 1.1.0-1

CVE-2019-25058 affecting package usbguard for versions less than 1.1.0-1. An upgraded version of the package is available that resolves this issue...

Oracle Linux 9 : usbguard (ELSA-2023-0303)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-0303 advisory. 1.0.0-10.2 - Fix dbus memory leak on connection failure - Fix unauthorized access via D-bus Resolves: rhbz2127877 Tenable has extracted the preceding descriptio...

RHEL 9 : usbguard (RHSA-2023:0303)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0303 advisory. The USBGuard software framework provides system protection against intrusive USB devices by implementing basic whitelisting and blacklisting...

Moderate: usbguard security update

The USBGuard software framework provides system protection against intrusive USB devices by implementing basic whitelisting and blacklisting capabilities based on device attributes. To enforce a user-defined policy, USBGuard uses the Linux kernel USB device authorization feature. Security Fixes:...

RHEL 8 : usbguard (RHSA-2023:0087)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0087 advisory. The USBGuard software framework provides system protection against intrusive USB devices by implementing basic whitelisting and blacklisting...

Debian DLA-2979-1 : usbguard - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-2979 advisory. - An issue was discovered in USBGuard before 1.1.0. On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow all USB devices to be...

AZL-8805 CVE-2019-25058 affecting package usbguard for versions less than 1.1.0-1

An issue was discovered in USBGuard before 1.1.0. On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow all USB devices to be connected in the future...

CVE-2019-25058

The CVE describes a vulnerability in USBGuard prior to 1.1.0 where, on systems running the usbguard-dbus daemon, an unprivileged user could cause USBGuard to permit all USB devices to connect in the future. This is a local attack with potentially high impact (abuse of device authorization). A fix...