CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

66 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability in Dbus

Before version 1.15.6, D-Bus sometimes allowed unprivileged users to cause dbus-daemon to crash. If a privileged user with control over dbus-daemon used the org.freedesktop.DBus.Monitoring interface to monitor message bus traffic, then an unprivileged user with the ability to connect to the same...

6.5CVSS6.5AI score0.01417EPSS

Exploits1References2

RedhatCVE•added 2026/04/24 5:11 p.m.•4 views

CVE-2026-31550

A flaw was found in the Linux kernel's bcm2835-power component. An insufficient timeout during the ASB Advanced System Bus bridge control process, particularly under heavy system load, can prevent the V3D graphics processor from properly disabling. This can leave the V3D in an unstable state,...

5.5CVSS5.3AI score0.00123EPSS

Exploits0References4

Tenable Nessus•added 2026/03/06 12:0 a.m.•5 views

AlmaLinux 10 : udisks2 (ALSA-2026:3476)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:3476 advisory. udisks: Missing Authorization Check Allows Unprivileged Users to Back Up LUKS Headers via udisks D-Bus API CVE-2026-26104 udisks: Missing Authorization...

7.1CVSS5.9AI score0.00075EPSS

Exploits0References4

ATTACKERKB•added 2026/02/25 10:31 a.m.•6 views

CVE-2026-26103

A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers without proper authorization checks. The issue allows a local unprivileged user to instruct the root-owned udisks daemon to overwrite encryption metadata on block...

7.1CVSS5.4AI score0.00074EPSS

Exploits0References6

Tenable Nessus•added 2025/11/13 12:0 a.m.•5 views

Siemens SIMATIC S7-1500 Missing Encryption of Sensitive Data (CVE-2023-34969)

6.5CVSS6.7AI score0.01417EPSS

Exploits1References6

OSV•added 2025/10/10 2:27 p.m.•5 views

JLSEC-2025-22 D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon

6.5CVSS6.8AI score0.01417EPSS

Exploits1References4

OSV•added 2025/10/10 2:27 p.m.•4 views

JLSEC-2025-18 An issue was discovered in dbus >= 1.3.0 before 1.12.18

An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system service's private AFUNIX socket...

5.5CVSS6.6AI score0.00569EPSS

Exploits1References10

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-39008

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.01417EPSS

Exploits1References6

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2014-8148

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default D-Bus access control rule in Midgard2 10.05.7.1 allows local users to send arbitrary method calls or signals to any process on the system bus and...

7.2CVSS6.1AI score0.00428EPSS

Exploits0References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2023-34969

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon. If a privileged user with control over the dbus-daemon is using the...

6.5CVSS6.6AI score0.01417EPSS

Exploits1References2

Tenable Nessus•added 2025/08/10 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-38425

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - i2c: tegra: check msg length in SMBUS block read For SMBUS block read, do not continue to read if the message length passed from the device is '0' or greater th...

7.8CVSS6.8AI score0.00153EPSS

Exploits0References3

Amazon•added 2024/01/22 12:0 a.m.•30 views

Medium: dbus

Issue Overview: D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon. If a privileged user with control over the dbus-daemon is using the org.freedesktop.DBus.Monitoring interface to monitor message bus traffic, then an unprivileged user with the ability to connect to the...

6.5CVSS6.9AI score0.01417EPSS

Exploits1

Amazon•added 2024/01/22 12:0 a.m.•4 views

Medium: dbus

6.5CVSS6.9AI score0.01417EPSS

Exploits1

OSV•added 2023/06/27 11:5 a.m.•2 views

OESA-2023-1375 dbus security update

D-Bus is a message bus system, a simple way for applications to talk to one another. In addition to interprocess communication, D-Bus helps coordinate process lifecycle; it makes it simple and reliable to code a "single instance" application or daemon, and to launch applications and daemons on...

6.5CVSS6.9AI score0.01417EPSS

Exploits1References2

Microsoft CVE•added 2023/06/21 7:0 a.m.•1 views

D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon. If a privileged user with control over the dbus-daemon is using the org.freedesktop.DBus.Monitoring interface to monitor message bus traffic then an unprivileged user with the ability to connect to the same dbus-daemon can cause a dbus-daemon crash under some circumstances via an unreplyable message. When done on the well-known system bus this is a denial-of-service vulnerability. The fixed versions are 1.12.28 1.14.8 and 1.15.6.

...

6.5CVSS6.7AI score0.01417EPSS

Exploits1