Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Systemd ProjectSystemd*

14 matches found

CVE
CVEadded 2021/07/20 6:13 p.m.480 views

CVE-2021-33910

CVE-2021-33910 affects systemd prior to versions 246.15, 247.8, 248.5, and 249.1. The root cause is a Memory Allocation with an Excessive Size Value in basic/unit-name.c involving strdupa and alloca for a pathname controlled by a local attacker, leading to a crash of the operating system (denial ...

5.5CVSS5.8AI score0.0865EPSS
CVE
CVEadded 2020/01/21 5:12 a.m.448 views

CVE-2019-20386

CVE-2019-20386 affects systemd and is caused by a memory leak in button_open() invoked when handling udev events via login/logind-button.c, enabling local DoS under certain conditions. Public doks confirm exploit path through udevadm trigger to trigger memory leak and potential denial of service....

5.1CVSS5.1AI score0.00429EPSS
CVE
CVEadded 2025/05/30 1:13 p.m.361 views

CVE-2025-4598

The CVE-2025-4598 entry concerns a race condition in systemd-coredump that can let a local attacker read a crashed SUID process’s core dump. Affected component is systemd and its coredump handling; root cause is a kill-and-replace race where the kernel recycles a PID before systemd-coredump can a...

4.7CVSS6.5AI score0.00641EPSS
CVE
CVEadded 2023/03/03 12:0 a.m.293 views

CVE-2023-26604

CVE-2023-26604 affects systemd before 247. The root cause is that systemd does not set LESSSECURE=1, allowing less to spawn as root and enabling local privilege escalation when systemctl is used from sudo. Existence of substantiated impact: local privilege escalation with high severity. Remediati...

7.8CVSS7.8AI score0.01051EPSS
Web
CVE
CVEadded 2018/02/16 9:0 p.m.279 views

CVE-2018-1049

CVE-2018-1049 describes a race condition in systemd prior to version 234 between .mount and .automount units, where automount requests from the kernel may not be serviced, causing the mountpoint to hang for affected processes and leading to denial of service. Connected advisories and Nessus plugi...

5.9CVSS5.5AI score0.0726EPSS
CVE
CVEadded 2019/01/14 10:0 p.m.254 views

CVE-2018-16888

CVE-2018-16888 affects systemd. When a service runs as an unprivileged user, a local attacker who can write to the service’s PIDFile may trick systemd into killing other services and/or privileged processes. Vulnerable versions are those before v237. Remediation: update systemd to a fixed version...

4.7CVSS5.4AI score0.00298EPSS
CVE
CVEadded 2018/01/29 5:0 a.m.195 views

CVE-2017-18078

The CVE-2017-18078 issue affects systemd-tmpfiles in systemd prior to 237. The root cause is that tmpfiles may attempt ownership/permission changes on hardlinked files even when fs.protected_hardlinks is off, enabling a local attacker to bypass access restrictions by using a hard link to a file t...

7.8CVSS7.2AI score0.01085EPSS
Web
CVE
CVEadded 2019/04/26 8:26 p.m.189 views

CVE-2019-3844

Summary (CVE-2019-3844): Affected component is systemd with DynamicUser; a local attacker can create SUID/SGID binaries and gain access to resources owned by a potentially different service after the transient UID/GID is recycled. This is a local privilege escalation vulnerability. Remediation fo...

7.8CVSS7.4AI score0.00888EPSS
CVE
CVEadded 2019/04/26 8:27 p.m.157 views

CVE-2019-3843

CVE-2019-3843 concerns systemd's DynamicUser feature, where a service can create a SUID/SGID binary and retain it under a transient UID/GID after termination. The result is a local attacker potentially accessing resources owned by a different service in the future when UID/GID are recycled, as de...

7.8CVSS7.2AI score0.00912EPSS
CVE
CVEadded 2013/10/28 10:0 p.m.102 views

CVE-2013-4392

CVE-2013-4392 pertains to systemd: during file permission updates, a symlink attack on unspecified files lets local users change permissions and SELinux contexts of arbitrary files. Root cause is a symlink-based manipulation affecting file metadata via systemd’s permission-update logic. The CVSS ...

5CVSS6.6AI score0.00472EPSS
CVE
CVEadded 2013/10/28 10:0 p.m.78 views

CVE-2013-4393

CVE-2013-4393 concerns the journald component of systemd. The vulnerability occurs when the origin of native messages is set to file, allowing a local attacker to trigger a denial of service (logging service blocking) by using a crafted file descriptor. The impact described in connected sources i...

2.1CVSS6.2AI score0.0039EPSS
CVE
CVEadded 2013/10/28 10:0 p.m.73 views

CVE-2013-4391

CVE-2013-4391 : Integer overflow in systemd’s journald-native.c (valid_user_field) allows remote attackers to crash the service and possibly execute code via a very large journal data field, triggering a heap-based buffer overflow. Documented impact includes denial of service and potential arbitr...

7.5CVSS8AI score0.05341EPSS
CVE
CVEadded 2013/10/28 10:0 p.m.63 views

CVE-2013-4394

CVE-2013-4394 concerns systemd’s SetX11Keyboard function. When PKLA is used to change group permissions on XKB layouts, local users in that group may modify the Xorg X11 Server configuration file and potentially gain privileges through vectors involving special and control characters. The vulnera...

5.9CVSS6.3AI score0.00337EPSS
CVE
CVEadded 2026/04/10 3:16 p.m.14 views

CVE-2026-40225

The CVE-2026-40225 entry concerns udev in systemd prior to 260, where local root access can result from malicious hardware devices and unsanitized kernel output. The vulnerability affects the systemd/udev component and is described with a CVSSv3.1 base score of 6.4 (MEDIUM), with attack vector Ph...

6.4CVSS5.9AI score0.00144EPSS