Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/02/25 10:51 a.m.21 views

CVE-2026-26104 Udisks: missing authorization check allows unprivileged users to back up luks headers via udisks d-bus api

A flaw was found in the udisks storage management daemon that allows unprivileged users to back up LUKS encryption headers without authorization. The issue occurs because a privileged D-Bus method responsible for exporting encryption metadata does not perform a policy check. As a result, sensitiv...

5.5CVSS0.00075EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/09/17 12:0 a.m.2 views

RHEL 8 : udisks2 (RHSA-2025:16106)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:16106 advisory. The Udisks project provides a daemon, tools, and libraries to access and manipulate disks, storage devices, and technologies. Security Fixes: udisks...

8.5CVSS6AI score0.0065EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/09/02 3:59 a.m.7 views

udisks: Out-of-bounds read in UDisks Daemon

A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the loop device handler, which handles requests sent through the D-BUS interface. As two of the parameters of this handle, it receives the file descriptor...

8.5CVSS5.8AI score0.0065EPSS
Exploits1References4
OSV
OSV
added 2025/09/02 12:0 a.m.5 views

ALSA-2025:15018 Important: udisks2 security update

The Udisks project provides a daemon, tools, and libraries to access and manipulate disks, storage devices, and technologies. Security Fixes: udisks: Out-of-bounds read in UDisks Daemon CVE-2025-8067 For more details about the security issues, including the impact, a CVSS score, acknowledgments,...

8.5CVSS6.8AI score0.0065EPSS
Exploits1References4
Rows per page
Query Builder