Lucene search
+L

44 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/27 5:30 a.m.1 views

CVE-2026-4948

A flaw was found in firewalld. A local unprivileged user can exploit this vulnerability by mis-authorizing two runtime D-Bus Desktop Bus setters, setZoneSettings2 and setPolicySettings. This mis-authorization allows the user to modify the runtime firewall state without proper authentication,...

5.5CVSS5.7AI score0.00118EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/27 5:30 a.m.6 views

CVE-2026-4948

A flaw was found in firewalld. A local unprivileged user can exploit this vulnerability by mis-authorizing two runtime D-Bus Desktop Bus setters, setZoneSettings2 and setPolicySettings. This mis-authorization allows the user to modify the runtime firewall state without proper authentication,...

5.5CVSS5.8AI score0.00118EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.5 views

PT-2026-28678

Name of the Vulnerable Software and Affected Versions firewalld affected versions not specified Description A flaw exists in firewalld that allows a local unprivileged user to modify the runtime firewall state without proper authentication. This is possible due to mis-authorization of two runtime...

5.5CVSS5.9AI score0.00118EPSS
Exploits0References33
OSV
OSV
added 2026/03/17 12:0 a.m.8 views

UBUNTU-CVE-2026-4105

A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus Desktop Bus method. A local unprivileged user can exploit this by attempting to register a machine with a...

6.7CVSS6.1AI score0.00142EPSS
Exploits0References5
NVD
NVD
added 2026/03/13 7:55 p.m.5 views

CVE-2026-4105

A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus Desktop Bus method. A local unprivileged user can exploit this by attempting to register a machine with a...

6.7CVSS0.00142EPSS
Exploits0References4
OSV
OSV
added 2026/03/13 7:55 p.m.5 views

CVE-2026-4105

A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus Desktop Bus method. A local unprivileged user can exploit this by attempting to register a machine with a...

6.7CVSS6AI score0.00142EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/13 7:55 p.m.4 views

CVE-2026-4105

A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus Desktop Bus method. A local unprivileged user can exploit this by attempting to register a machine with a...

6.7CVSS6AI score0.00142EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/13 8:52 a.m.4 views

CVE-2026-4105

A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus Desktop Bus method. A local unprivileged user can exploit this by attempting to register a machine with a...

6.7CVSS6AI score0.00142EPSS
Exploits0References5
CVE
CVE
added 2026/03/13 8:52 a.m.36 views

CVE-2026-4105

CVE-2026-4105 affects the systemd project, specifically the systemd-machined service. The vulnerability arises from improper access control in the RegisterMachine D-Bus method, due to insufficient validation of the class parameter. A local, unprivileged user can attempt to register a machine with...

6.7CVSS6AI score0.00142EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/13 8:52 a.m.4 views

EUVD-2026-11774

A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus Desktop Bus method. A local unprivileged user can exploit this by attempting to register a machine with a...

7.8CVSS6AI score0.00142EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/13 8:52 a.m.4 views

CVE-2026-4105

A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus Desktop Bus method. A local unprivileged user can exploit this by attempting to register a machine with a...

6.7CVSS5.9AI score0.00142EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/03/13 8:52 a.m.11 views

CVE-2026-4105

A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus Desktop Bus method. A local unprivileged user can exploit this by attempting to register a machine with a...

6.7CVSS5.8AI score0.00142EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-4105

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class paramete...

6.7CVSS6.2AI score0.00142EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.6 views

MiracleLinux 3 : dbus-1.1.2-16.AXS3 (AXSA:2011-305:02)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-305:02 advisory. D-BUS is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messagin...

4.6CVSS5.5AI score0.00386EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/01/08 3:4 p.m.5 views

CVE-2025-67603

A Improper Authorization vulnerability in Foomuuri llows arbitrary users to influence the firewall configuration.This issue affects Foomuuri: from ? before 0.31...

5.1CVSS5.5AI score0.00148EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-25167

Name of the Vulnerable Software and Affected Versions systemd affected versions not specified Description The systemd-machined service has an issue with access control due to inadequate validation of the class parameter within the RegisterMachine D-Bus method. A local user with limited privileges...

6.7CVSS6AI score0.00142EPSS
Exploits0References62
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.2 views

EulerOS 2.0 SP13 : udisks2 (EulerOS-SA-2025-2533)

According to the versions of the udisks2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the...

8.5CVSS5.9AI score0.0065EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:13 a.m.5 views

SUSE CVE-2006-6107

Unspecified vulnerability in the matchruleequal function in bus/signals.c in D-Bus before 1.0.2 allows local applications to remove match rules for other applications and cause a denial of service lost process messages...

1.7CVSS6.5AI score0.00376EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/09/14 12:0 a.m.7 views

KDiskMark 安全漏洞

KDiskMark is an HDD and SSD benchmarking tool by Dmitry Sidorov, a personal developer. It has a very user-friendly graphical user interface. A security vulnerability exists in KDiskMark versions prior to 3.1.0, which stems from a missing authorization check for D-Bus methods such as...

7.8CVSS7.3AI score0.00355EPSS
Exploits1References7
OSV
OSV
added 2022/02/16 7:15 p.m.3 views

DEBIAN-CVE-2021-3560

It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest threat from this...

7.8CVSS7.9AI score0.22193EPSS
Exploits37References1
Rows per page
Query Builder