Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-13462

Malware in sbrugna...

7CVSS5AI score0.01217EPSS
Exploits3References16
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.29 views

AlmaLinux 8 : systemd (ALSA-2021:1611)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:1611 advisory. - In systemd before v242-rc4, it was discovered that pamsystemd does not properly sanitize the environment before using the XDGSEAT variable. It is possib...

7CVSS5.8AI score0.01217EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2021/10/20 12:0 a.m.98 views

RHEL 8 : systemd (RHSA-2021:3900)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3900 advisory. The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides...

7CVSS5.9AI score0.01217EPSS
Exploits3References7
RedHat Linux
RedHat Linux
added 2021/10/19 7:18 a.m.42 views

Moderate: Red Hat Security Advisory: systemd security update

An update for systemd is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7CVSS6AI score0.01217EPSS
Exploits3References3
Veracode
Veracode
added 2021/05/20 3:25 p.m.29 views

Privilege Escalation

systemd is vulnerable to privilege escalation. The XDGSEAT environment variable can be spoofed, which allows for commands to be checked against polkit policies using the allowactive element instead of the allowany...

7CVSS4.5AI score0.01217EPSS
Exploits3References15Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.82 views

CentOS 8 : systemd (CESA-2021:1611)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1611 advisory. - systemd: Spoofing of XDGSEAT allows for actions to be checked against allowactive instead of allowany CVE-2019-3842 - systemd: Mishandles numerical...

7CVSS5.7AI score0.01217EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.54 views

RHEL 8 : systemd (RHSA-2021:1611)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1611 advisory. The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides...

7CVSS5.9AI score0.01217EPSS
Exploits3References24
Rockylinux
Rockylinux
added 2021/05/18 5:39 a.m.51 views

systemd security, bug fix, and enhancement update

An update is available for systemd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The systemd packages contain systemd, a system and service manager for Linux,...

7CVSS7.1AI score0.01217EPSS
Exploits3
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2019-1344)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS7.5AI score0.01217EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/09/17 12:0 a.m.36 views

EulerOS Virtualization for ARM 64 3.0.2.0 : systemd (EulerOS-SA-2019-1923)

According to the versions of the systemd packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - It was discovered that pamsystemd does not properly sanitize the environment before using the XDGSEAT variable. It is...

7.8CVSS5.9AI score0.01217EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2019/06/27 12:0 a.m.31 views

EulerOS 2.0 SP8 : systemd (EulerOS-SA-2019-1661)

According to the versions of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries, which...

7.8CVSS5.9AI score0.01217EPSS
Exploits5References4
Tenable Nessus
Tenable Nessus
added 2019/05/29 12:0 a.m.33 views

EulerOS 2.0 SP3 : systemd (EulerOS-SA-2019-1599)

According to the version of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - systemd: Spoofing of XDGSEAT allows for actions to be checked against 'allowactive' instead of 'allowany'.CVE-2019-3842 Note that Tenable Network...

7CVSS5.7AI score0.01217EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/05/06 12:0 a.m.32 views

EulerOS 2.0 SP2 : systemd (EulerOS-SA-2019-1344)

According to the version of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - systemd: Spoofing of XDGSEAT allows for actions to be checked against 'allowactive' instead of 'allowany'.CVE-2019-3842 Note that Tenable Network...

7CVSS5.7AI score0.01217EPSS
Exploits3References2
OSV
OSV
added 2019/04/09 9:29 p.m.2 views

DEBIAN-CVE-2019-3842

In systemd before v242-rc4, it was discovered that pamsystemd does not properly sanitize the environment before using the XDGSEAT variable. It is possible for an attacker, in some particular configurations, to set a XDGSEAT environment variable which allows for commands to be checked against polk...

7CVSS8AI score0.01217EPSS
Exploits3References1
OSV
OSV
added 2019/04/09 9:29 p.m.23 views

CVE-2019-3842

In systemd before v242-rc4, it was discovered that pamsystemd does not properly sanitize the environment before using the XDGSEAT variable. It is possible for an attacker, in some particular configurations, to set a XDGSEAT environment variable which allows for commands to be checked against polk...

7CVSS6.8AI score0.01217EPSS
Exploits3References8
Prion
Prion
added 2019/04/09 9:29 p.m.25 views

Command injection

In systemd before v242-rc4, it was discovered that pamsystemd does not properly sanitize the environment before using the XDGSEAT variable. It is possible for an attacker, in some particular configurations, to set a XDGSEAT environment variable which allows for commands to be checked against polk...

4.4CVSS6.4AI score0.01217EPSS
Exploits3References8Affected Software4
CVE
CVE
added 2019/04/09 8:25 p.m.425 views

CVE-2019-3842

The CVE-2019-3842 issue affects systemd’s pam_systemd, where improper sanitization of the XDG_SEAT environment variable could enable commands to be checked against polkit policies using the "allow_active" element instead of "allow_any" in some configurations. This is a local vulnerability (enviro...

7CVSS6.8AI score0.01217EPSS
Exploits3References8Affected Software1
RedhatCVE
RedhatCVE
added 2019/04/09 2:19 p.m.24 views

CVE-2019-3842

It was discovered that pamsystemd does not properly sanitize the environment before using the XDGSEAT variable. It is possible for an attacker, in some particular configurations, to set a XDGSEAT environment variable which allows for commands to be checked against polkit policies using the...

7CVSS3.5AI score0.01217EPSS
Exploits3References3
UbuntuCve
UbuntuCve
added 2019/04/08 12:0 a.m.33 views

CVE-2019-3842

In systemd before v242-rc4, it was discovered that pamsystemd does not properly sanitize the environment before using the XDGSEAT variable. It is possible for an attacker, in some particular configurations, to set a XDGSEAT environment variable which allows for commands to be checked against polk...

7CVSS6.3AI score0.01217EPSS
Exploits3References2
Rows per page
Query Builder