Lucene search
K

351 matches found

CVE
CVE
added 2026/02/25 10:51 a.m.23 views

CVE-2026-26104

CVE-2026-26104 affects the udisks storage management daemon. A privileged D-Bus method that exports encryption metadata does not perform a policy check, allowing unprivileged users to back up LUKS header data and potentially read or write sensitive cryptographic metadata to attacker-controlled lo...

5.5CVSS5.4AI score0.00075EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/02/25 10:51 a.m.22 views

CVE-2026-26104 Udisks: missing authorization check allows unprivileged users to back up luks headers via udisks d-bus api

A flaw was found in the udisks storage management daemon that allows unprivileged users to back up LUKS encryption headers without authorization. The issue occurs because a privileged D-Bus method responsible for exporting encryption metadata does not perform a policy check. As a result, sensitiv...

5.5CVSS0.00075EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/25 10:51 a.m.7 views

CVE-2026-26104

A flaw was found in the udisks storage management daemon that allows unprivileged users to back up LUKS encryption headers without authorization. The issue occurs because a privileged D-Bus method responsible for exporting encryption metadata does not perform a policy check. As a result, sensitiv...

5.5CVSS5.4AI score0.00075EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/02/25 10:51 a.m.3 views

CVE-2026-26104 Udisks: missing authorization check allows unprivileged users to back up luks headers via udisks d-bus api

A flaw was found in the udisks storage management daemon that allows unprivileged users to back up LUKS encryption headers without authorization. The issue occurs because a privileged D-Bus method responsible for exporting encryption metadata does not perform a policy check. As a result, sensitiv...

5.5CVSS5.4AI score0.00075EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/02/25 10:51 a.m.7 views

CVE-2026-26104

A flaw was found in the udisks storage management daemon that allows unprivileged users to back up LUKS encryption headers without authorization. The issue occurs because a privileged D-Bus method responsible for exporting encryption metadata does not perform a policy check. As a result, sensitiv...

5.5CVSS5.1AI score0.00075EPSS
Exploits0References4
OSV
OSV
added 2026/02/25 10:31 a.m.4 views

CVE-2026-26103 Udisks: missing authorization check allows unprivileged users to restore luks headers via udisks d-bus api

A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers without proper authorization checks. The issue allows a local unprivileged user to instruct the root-owned udisks daemon to overwrite encryption metadata on block...

7.1CVSS5.9AI score0.00075EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/02/25 10:31 a.m.4 views

CVE-2026-26103

A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers without proper authorization checks. The issue allows a local unprivileged user to instruct the root-owned udisks daemon to overwrite encryption metadata on block...

7.1CVSS5.2AI score0.00075EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/02/25 10:31 a.m.6 views

CVE-2026-26103

A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers without proper authorization checks. The issue allows a local unprivileged user to instruct the root-owned udisks daemon to overwrite encryption metadata on block...

7.1CVSS5.4AI score0.00075EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/02/25 10:31 a.m.2 views

CVE-2026-26103 Udisks: missing authorization check allows unprivileged users to restore luks headers via udisks d-bus api

A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers without proper authorization checks. The issue allows a local unprivileged user to instruct the root-owned udisks daemon to overwrite encryption metadata on block...

7.1CVSS5.4AI score0.00075EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/25 10:31 a.m.27 views

CVE-2026-26103 Udisks: missing authorization check allows unprivileged users to restore luks headers via udisks d-bus api

A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers without proper authorization checks. The issue allows a local unprivileged user to instruct the root-owned udisks daemon to overwrite encryption metadata on block...

7.1CVSS0.00075EPSS
Exploits0References5
CVE
CVE
added 2026/02/25 10:31 a.m.21 views

CVE-2026-26103

The CVE-2026-26103 issue affects the udisks2 daemon (block device management) where a missing authorization check on the RestoreEncryptedHeader() D-Bus API allows a local unprivileged user to instruct the root-owned udisks daemon to overwrite LUKS encryption headers. This can permanently invalida...

7.1CVSS5.4AI score0.00075EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/25 10:31 a.m.4 views

CVE-2026-26103

A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers without proper authorization checks. The issue allows a local unprivileged user to instruct the root-owned udisks daemon to overwrite encryption metadata on block...

7.1CVSS5.2AI score0.00075EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/25 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-26104

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the udisks storage management daemon that allows unprivileged users to back up LUKS encryption headers without authorization. The issue occu...

5.5CVSS5.8AI score0.00075EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.8 views

udisks 安全漏洞

udisks is a daemon developed by stored-project, open-source software used for querying and managing storage devices. udisks has a security vulnerability that stems from privileged D-Bus methods lacking policy checks. This vulnerability could allow non-privileged users to back up LUKS encrypted...

5.5CVSS5.8AI score0.00075EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.6 views

PT-2026-21896

Name of the Vulnerable Software and Affected Versions udisks affected versions not specified Description A flaw exists in the udisks storage management daemon related to authorization checks for restoring LUKS encryption headers via a privileged D-Bus API. An unprivileged local user can instruct...

7.1CVSS5.8AI score0.00075EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.9 views

udisks 安全漏洞

udisks is a daemon developed by stored-project, open-source software used for querying and managing storage devices. udisks has a security vulnerability that stems from the lack of authorization checks in the privileged D-Bus API. This vulnerability could allow non-privileged local users to...

7.1CVSS5.8AI score0.00075EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/02/14 6:0 p.m.227 views

Exploit for Incorrect Authorization in Suse Pam-Config

CVE-2025-6018 + CVE-2025-6019 Exploit Chain This exploit was...

7.8CVSS5.4AI score0.00957EPSS
Exploits19
GithubExploit
GithubExploit
added 2026/02/10 9:29 a.m.212 views

Exploit for CVE-2025-6019

CVE-2025-6019-udisks-lpe-no-image Script-only privilege escala...

7.8CVSS5.7AI score0.00957EPSS
Exploits19
OSV
OSV
added 2026/01/30 2:30 p.m.4 views

OPENSUSE-SU-2026:20141-1 Security update for udisks2

This update for udisks2 fixes the following issues: - CVE-2025-8067: Fixed a missing bounds check that could lead to out-of-bounds read in udisks daemon bsc1248502...

8.5CVSS7.3AI score0.0065EPSS
Exploits1References2
OSV
OSV
added 2026/01/30 2:28 p.m.3 views

SUSE-SU-2026:20213-1 Security update for udisks2

This update for udisks2 fixes the following issues: - CVE-2025-8067: Fixed a missing bounds check that could lead to out-of-bounds read in udisks daemon bsc1248502...

8.5CVSS7.3AI score0.0065EPSS
Exploits1References3
Rows per page
Query Builder