Lucene search
K

2002 matches found

Amazon
Amazon
added 2026/03/06 12:0 a.m.5 views

Medium: evolution-data-server

Issue Overview: The Evolution backend server exposes the D-Bus service org.gnome.evolution.dataserver.AddressBook, that can be used in order to manage contacts. A Flatpak application with access to this D-Bus service can exploit this issue in order to gain arbitrary file deletion on the host...

6AI score0.00189EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.3 views

Amazon Linux 2023 : evolution-data-server, evolution-data-server-devel, evolution-data-server-langpacks (ALAS2023-2026-1451)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1451 advisory. The Evolution backend server exposes the D-Bus service org.gnome.evolution.dataserver.AddressBook, that can be used in order to manage contacts. A Flatpak application with access to this D-Bus service...

5.6CVSS5.9AI score0.00189EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.5 views

RockyLinux 10 : udisks2 (RLSA-2026:3476)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:3476 advisory. udisks: Missing Authorization Check Allows Unprivileged Users to Back Up LUKS Headers via udisks D-Bus API CVE-2026-26104 udisks: Missing Authorization...

7.1CVSS5.9AI score0.00075EPSS
Exploits0References5
OSV
OSV
added 2026/03/05 9:12 a.m.6 views

RLSA-2026:3476 Important: udisks2 security update

The Udisks project provides a daemon, tools, and libraries to access and manipulate disks, storage devices, and technologies. Security Fixes: udisks: Missing Authorization Check Allows Unprivileged Users to Back Up LUKS Headers via udisks D-Bus API CVE-2026-26104 udisks: Missing Authorization Che...

7.1CVSS5.8AI score0.00075EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2026/03/05 9:12 a.m.6 views

udisks2 security update

An update is available for udisks2. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Udisks project provides a daemon, tools, and libraries to access and...

7.1CVSS6AI score0.00075EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/03/02 1:43 a.m.6 views

Important: Red Hat Security Advisory: udisks2 security update

An update for udisks2 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.1CVSS5.8AI score0.00075EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/03/02 1:43 a.m.3 views

udisks: Missing Authorization Check Allows Unprivileged Users to Restore LUKS Headers via udisks D-Bus API

A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers without proper authorization checks. The issue allows a local unprivileged user to instruct the root-owned udisks daemon to overwrite encryption metadata on block...

7.1CVSS5.8AI score0.00075EPSS
Exploits0References5
CVE
CVE
added 2026/02/25 10:31 a.m.21 views

CVE-2026-26103

The CVE-2026-26103 issue affects the udisks2 daemon (block device management) where a missing authorization check on the RestoreEncryptedHeader() D-Bus API allows a local unprivileged user to instruct the root-owned udisks daemon to overwrite LUKS encryption headers. This can permanently invalida...

7.1CVSS5.4AI score0.00075EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/02/25 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-26104

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the udisks storage management daemon that allows unprivileged users to back up LUKS encryption headers without authorization. The issue occu...

5.5CVSS5.8AI score0.00075EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2026/02/16 12:0 a.m.50 views

virt:ol and virt-devel:ol security and bug fix update

hivex libguestfs libguestfs-winsupport 8.8-2 - Rebase to ntfs-3g 2022.10.3 - Fixes: CVE-2022-40284 - resolves: rhbz2236373 libiscsi libnbd libtpms libvirt libvirt-dbus libvirt-python nbdkit netcf perl-Sys-Virt qemu-kvm 6.2.0-33 - CVE-2023-3354 QEMU: VNC: improper I/O watch removal in TLS handshak...

7.8CVSS6.4AI score0.01606EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.4 views

EulerOS Virtualization 2.10.0 : glib2 (EulerOS-SA-2026-1166)

According to the versions of the glib2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in glib. An integer overflow during temporary file creation leads to an out-of-bounds memory access, allowing an...

5.2CVSS6AI score0.00756EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: accountsservice (CVE-2023-3297)

The version of accountsservice installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3297 advisory. - In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerabilit...

8.1CVSS5.7AI score0.0033EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : glib2-2.56.4-8.el8 (AXSA:2020-523:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-523:01 advisory. ibus: missing authorization allows local attacker to access the input bus of another user CVE-2019-14822 CVE-2019-14822 A flaw was discovered in ibus that...

7.1CVSS7.8AI score0.00365EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : dbus-1.12.8-10.el8 (AXSA:2020-545:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-545:02 advisory. dbus: denial of service via file descriptor leak CVE-2020-12049 CVE-2020-12049: An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in...

5.5CVSS7.5AI score0.00569EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : dbus-1.12.20-7.el9 (AXSA:2023-4874:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4874:04 advisory. dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets CVE-2022-42010 dbus: dbus-daemon can be...

6.5CVSS8.5AI score0.0131EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : keepalived-2.1.5-8.el8.ML.1 (AXSA:2022-3396:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-3396:02 advisory. keepalived: dbus access control bypass CVE-2021-44225 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

5.5CVSS5.6AI score0.01159EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 8 : usbguard-1.0.0-8.el8.2 (AXSA:2023-4807:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4807:01 advisory. usbguard: Fix unauthorized access via D-Bus CVE-2019-25058 Tenable has extracted the preceding description block directly from the MiracleLinux security...

7.8CVSS5.6AI score0.00378EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : dbus-1.12.8-23.el8.1 (AXSA:2023-4786:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4786:03 advisory. dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets CVE-2022-42010 dbus: dbus-daemon can be...

6.5CVSS8.5AI score0.0131EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : dbus-1.10.24-15.el7 (AXSA:2020-600:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-600:03 advisory. dbus: DBusServer DBUSCOOKIESHA1 authentication bypass CVE-2019-12749 Tenable has extracted the preceding description block directly from the MiracleLinux...

7.1CVSS7.2AI score0.00555EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : avahi-0.8-15.el9 (AXSA:2023-6723:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6723:02 advisory. avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket CVE-2021-3468 avahi: reachable assertion in...

5.5CVSS8.4AI score0.0045EPSS
Exploits2References4
Rows per page
Query Builder