Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2026/04/10 6:31 p.m.1 views

EUVD-2026-21396

In systemd 259 before 260, there is local privilege escalation in systemd-machined because varlink can be used to reach the root namespace...

6.7CVSS5.8AI score0.00014EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2026/04/10 4:16 p.m.2 views

CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.0001EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/04/10 12:0 a.m.0 views

PT-2026-31933

Name of the Vulnerable Software and Affected Versions systemd versions 259 through 259 Description A local privilege escalation exists in systemd-machined. This occurs because varlink, a lightweight communication protocol, can be used to reach the root namespace, allowing a local attacker to gain...

7.3CVSS5.8AI score0.00014EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2026/04/10 12:0 a.m.1 views

PT-2026-31936

In systemd 260 before 261, a local unprivileged user can trigger an assert via an IPC API call with an array or map that has a null element...

6.2CVSS5.8AI score0.00022EPSS
Exploits0References2
OSV
OSVadded 2023/12/23 1:15 p.m.0 views

AZL-43171 CVE-2023-7008 affecting package systemd for versions less than 255-20

A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles or the upstream DNS resolver to manipulate records...

5.9CVSS6.8AI score0.00477EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2023/02/15 5:10 a.m.1 views

SUSE CVE-2015-8946

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors...

3.3CVSS6.2AI score0.00124EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2023/02/15 4:37 a.m.1 views

SUSE CVE-2017-15908

In systemd 223 through 235, a remote DNS server can respond with a custom crafted DNS NSEC resource record to trigger an infinite loop in the dnspacketreadtypewindow function of the 'systemd-resolved' service and cause a DoS of the affected service...

5.5CVSS7AI score0.00267EPSS
Exploits0References20
SUSE CVE
SUSE CVEadded 2023/02/15 4:35 a.m.1 views

SUSE CVE-2017-1000082

systemd v233 and earlier fails to safely parse usernames starting with a numeric digit e.g. "0day", running the service in question with root privileges rather than the user intended...

10CVSS7.9AI score0.00258EPSS
Exploits0References4
OSV
OSVadded 2019/10/30 10:15 p.m.1 views

DEBIAN-CVE-2018-21029

systemd 239 through 245 accepts any certificate signed by a trusted certificate authority for DNS Over TLS. Server Name Indication SNI is not sent, and there is no hostname validation with the GnuTLS backend. NOTE: This has been disputed by the developer as not a vulnerability since hostname...

9.8CVSS6.8AI score0.0156EPSS
Exploits1References1
OSV
OSVadded 2016/07/22 2:59 p.m.1 views

DEBIAN-CVE-2015-8946

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors...

3.3CVSS3.8AI score0.00124EPSS
Exploits0References1
Rows per page
Query Builder