Lucene search
K

15 matches found

nessus
nessus
added 2024/07/23 12:0 a.m.13 views

Photon OS 3.0: Systemd PHSA-2019-3.0-0036

An update of the systemd package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-3.0-0036. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

4.4CVSS5.7AI score0.00511EPSS
Exploits1References2
susecve
susecve
added 2023/10/31 2:33 a.m.4 views

SUSE CVE-2019-15718

In systemd 240, busopensystemwatchbindwithdescription in shared/bus-util.c as used by systemd-resolved to connect to the system D-Bus instance, calls sdbussettrusted, which disables access controls for incoming D-Bus messages. An unprivileged user can exploit this by executing D-Bus methods that...

4.4CVSS8.3AI score0.00511EPSS
Exploits1References4
nessus
nessus
added 2023/09/07 12:0 a.m.22 views

Oracle Linux 8 : systemd (ELSA-2019-3592)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-3592 advisory. 239-18.0.1 - fix netdev is missing for iscsi entry in /etc/fstab [email protected] Orabug: 25897792 - set 'RemoveIPC=no' in logind.conf as default for OL7.2...

4.4CVSS6.5AI score0.00511EPSS
Exploits1References2
nessus
nessus
added 2021/01/29 12:0 a.m.42 views

CentOS 8 : systemd (CESA-2019:3592)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3592 advisory. - systemd: systemd-resolved allows unprivileged users to configure DNS CVE-2019-15718 Note that Nessus has not tested for this issue but has instead relied only...

4.4CVSS6AI score0.00511EPSS
Exploits1References2
openvas
openvas
added 2020/01/23 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2020-1054)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS5.2AI score0.00511EPSS
Exploits1References2
openvas
openvas
added 2020/01/23 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2019-2121)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS5.2AI score0.00511EPSS
Exploits1References2
mageia
mageia
added 2019/11/19 9:16 p.m.46 views

Updated systemd packages fix security vulnerability

Updated systemd packages fix security vulnerability: Nadav Markus from Palo Alto Networks discovered that systemd-resolved does not enforce appropriate access controls on its D-Bus interface and allows unprivileged users to execute methods that are meant to be available only to privileged users...

4.4CVSS2.9AI score0.00511EPSS
Exploits1References3
nessus
nessus
added 2019/11/06 12:0 a.m.37 views

RHEL 8 : systemd (RHSA-2019:3592)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:3592 advisory. The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive...

4.4CVSS6.1AI score0.00511EPSS
Exploits1References24
nessus
nessus
added 2019/10/07 12:0 a.m.39 views

Fedora 31 : systemd (2019-d5bd5f0aa4)

Update to latest release - Emission of Session property-changed notifications from logind is fixed this was breaking the switching of sessions to and from gnome. - Security issue: unprivileged users were allowed to change DNS servers configured in systemd-resolved. Now proper polkit authorization...

4.4CVSS6AI score0.00511EPSS
Exploits1References2
archlinux
archlinux
added 2019/10/02 12:0 a.m.31 views

[ASA-201910-3] systemd: access restriction bypass

Arch Linux Security Advisory ASA-201910-3 ========================================= Severity: Medium Date : 2019-10-02 CVE-ID : CVE-2019-15718 Package : systemd Type : access restriction bypass Remote : No Link : https://security.archlinux.org/AVG-1035 Summary ======= The package systemd before...

4.4CVSS0.9AI score0.00511EPSS
Exploits1References6
cloudfoundry
cloudfoundry
added 2019/09/30 12:0 a.m.31 views

USN-4120-2: systemd regression | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description USN-4120-1 fixed a vulnerability in systemd. The update included a recent SRU from the updates pocket that introduced networking problems for some users. This update fixes the problem. We apologize for th...

4.4CVSS4.8AI score0.00511EPSS
Exploits1
cloudfoundry
cloudfoundry
added 2019/09/30 12:0 a.m.30 views

USN-4120-1: systemd vulnerability | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that the systemd-resolved D-Bus interface did not enforce appropriate access controls. A local unprivileged user could exploit this to modify a system’s DNS resolver settings. CVEs...

4.4CVSS4.7AI score0.00511EPSS
Exploits1
nessus
nessus
added 2019/09/06 12:0 a.m.35 views

Fedora 30 : systemd (2019-24e1d561e5)

Security issue: unprivileged users were allowed to change DNS servers configured in systemd-resolved CVE-2019-15718. - Various minor fixes memory issues, compat with newer kernels, log message improvements, etc.. - hwdb entries for keyboards are updated to the latest version No need to log out or...

4.4CVSS6AI score0.00511EPSS
Exploits1References2
cve
cve
added 2019/09/04 11:4 a.m.285 views

CVE-2019-15718

CVE-2019-15718 affects systemd (notably systemd 240) where bus_open_system_watch_bind_with_description in shared/bus-util.c calls sd_bus_set_trusted, disabling access controls for incoming D-Bus messages. This allows an unprivileged user to invoke D-Bus methods that should be restricted, enabling...

4.4CVSS4.7AI score0.00511EPSS
Exploits1References7Affected Software1
ubuntucve
ubuntucve
added 2019/09/03 12:0 a.m.23 views

CVE-2019-15718

In systemd 240, busopensystemwatchbindwithdescription in shared/bus-util.c as used by systemd-resolved to connect to the system D-Bus instance, calls sdbussettrusted, which disables access controls for incoming D-Bus messages. An unprivileged user can exploit this by executing D-Bus methods that...

4.4CVSS6.4AI score0.00511EPSS
Exploits1References2
Rows per page
Query Builder