Lucene search
K

148 matches found

Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.59 views

Amazon Linux 2023 : dbus, dbus-common, dbus-daemon (ALAS2023-2023-100)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-100 advisory. An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus t...

6.5CVSS6.6AI score0.0131EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2023/03/08 12:0 a.m.35 views

EulerOS 2.0 SP5 : dbus (EulerOS-SA-2023-1497)

According to the versions of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause...

6.5CVSS6.6AI score0.0131EPSS
Exploits3References4
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.41 views

K16729408: D-Bus vulnerability CVE-2020-12049

Security Advisory Description An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system...

5.5CVSS6.7AI score0.00569EPSS
Exploits1Affected Software12
SUSE CVE
SUSE CVE
added 2023/02/15 5:45 a.m.4 views

SUSE CVE-2012-3524

libdbus 1.5.x and earlier, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUSSYSTEMBUSADDRESS environment variable. NOTE: libdbus maintainers state that this is a vulnerability in the...

6.9CVSS7.8AI score0.04514EPSS
Exploits4References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:11 a.m.3 views

SUSE CVE-2019-12749

dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 and in some, less common, uses of dbus-daemon, allows cookie spoofing because of symlink mishandling in the reference implementation of DBUSCOOKIESHA1 in the libdbus...

7.1CVSS7AI score0.00555EPSS
Exploits0References32
SUSE CVE
SUSE CVE
added 2023/02/15 3:59 a.m.2 views

SUSE CVE-2020-12049

An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system service's private AFUNIX socket...

5.5CVSS6.8AI score0.00569EPSS
Exploits1References38
Tenable Nessus
Tenable Nessus
added 2023/02/10 12:0 a.m.33 views

EulerOS 2.0 SP10 : dbus (EulerOS-SA-2023-1380)

According to the versions of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause...

6.5CVSS6.6AI score0.0131EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2023/02/10 12:0 a.m.22 views

EulerOS 2.0 SP10 : dbus (EulerOS-SA-2023-1352)

According to the versions of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause...

6.5CVSS6.6AI score0.0131EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2023/01/25 12:0 a.m.33 views

AlmaLinux 9 : dbus (ALSA-2023:0335)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0335 advisory. - An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause...

6.5CVSS6.7AI score0.0131EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2023/01/23 3:23 p.m.5 views

dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type

A vulnerability found in D-bus. This flaw allows an authenticated attacker to cause dbus-daemon and other programs that use libdbus to crash when receiving a message whose array length is inconsistent with the size of the element type...

6.5CVSS6.7AI score0.0131EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/01/23 3:23 p.m.5 views

dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly

A vulnerability found in D-bus. This flaw allows an authenticated attacker to cause dbus-daemon and other programs that use libdbus to crash by sending a message with attached file descriptors in an unexpected format...

6.5CVSS6.7AI score0.0131EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.71 views

RHEL 9 : dbus (RHSA-2023:0335)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0335 advisory. D-Bus is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a...

6.5CVSS6.8AI score0.0131EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2023/01/13 12:0 a.m.25 views

AlmaLinux 8 : dbus (ALSA-2023:0096)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0096 advisory. - An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause...

6.5CVSS6.7AI score0.0131EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2023/01/12 9:24 a.m.5 views

dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly

A vulnerability found in D-bus. This flaw allows an authenticated attacker to cause dbus-daemon and other programs that use libdbus to crash by sending a message with attached file descriptors in an unexpected format...

6.5CVSS6.7AI score0.0131EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/01/12 12:0 a.m.32 views

RHEL 8 : dbus (RHSA-2023:0096)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0096 advisory. D-Bus is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a...

6.5CVSS6.8AI score0.0131EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2023/01/12 12:0 a.m.28 views

Oracle Linux 8 : dbus (ELSA-2023-0096)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-0096 advisory. - Fix CVE-2022-42010 2133644 - Fix CVE-2022-42011 2133638 Tenable has extracted the preceding description block directly from the Oracle Linux security...

6.5CVSS6.6AI score0.0131EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2023/01/06 12:0 a.m.27 views

EulerOS 2.0 SP9 : dbus (EulerOS-SA-2023-1120)

According to the versions of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause...

6.5CVSS6.6AI score0.0131EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2023/01/06 12:0 a.m.29 views

EulerOS 2.0 SP9 : dbus (EulerOS-SA-2023-1096)

According to the versions of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause...

6.5CVSS6.6AI score0.0131EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2023/01/05 12:0 a.m.32 views

EulerOS 2.0 SP11 : dbus (EulerOS-SA-2023-1006)

According to the versions of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause...

6.5CVSS6.6AI score0.0131EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2022/12/13 4:12 p.m.7 views

dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type

A vulnerability found in D-bus. This flaw allows an authenticated attacker to cause dbus-daemon and other programs that use libdbus to crash when receiving a message whose array length is inconsistent with the size of the element type...

6.5CVSS6.7AI score0.0131EPSS
Exploits1References4
Rows per page
Query Builder