Privilege Escalation

🗓️ 09 Mar 2023 21:02:25Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 33 Views

systemd Privilege Escalation vulnerabilit

Reporter	Title	Published	Views	Family All 120
IBM Security Bulletins	Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from systemd, libcap, openssl-libs, libxml2, go-toolset, and prometheus-operator	28 Aug 202308:17	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Operator package issues	30 Nov 202318:45	–	ibm
IBM Security Bulletins	Security Bulletin: TSSC/IMC is vulnerable to arbitrary code execution due to systemd	8 Jul 202418:05	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak	26 Mar 202504:12	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities in systemd may affect IBM Storage Scale System	12 Dec 202311:47	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container operands are vulnerable to privilege elevation due to [CVE-2023-26604]	27 Jul 202315:46	–	ibm
0day.today	systemd 246 - Local Privilege Escalation Vulnerability	10 Aug 202300:00	–	zdt
Tenable Nessus	Amazon Linux 2 : systemd (ALAS-2023-2004)	5 Apr 202300:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0108: systemd (ALINUX3-SA-2023:0108)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : systemd (ALSA-2023:3837)	30 Jun 202300:00	–	nessus

Vulners

Node

systemd_project systemdMatch246.6-4debian

AND

debian debian_linuxMatch11

systemd_project systemdMatch246.6-5debian

AND

debian debian_linuxMatch999

systemd_project systemdMatch241-7~deb10u6debian

AND

systemd_project systemdMatch241-7~deb10u7debian

AND

systemd_project systemdMatch241-7~deb10u5debian

AND

systemd_project systemdMatch241-7~deb10u8debian

AND

systemd_project systemdMatch241-7~deb10u4debian

AND

debian debian_linuxMatch10

systemd_project systemdMatch219_67.el7_7.4

systemd_project systemdMatch239_45.el8_4.2

systemd_project systemdMatch219_67.el7_7.3

systemd_project systemdMatch219_67.el7_7.1

systemd_project systemdMatch239_49.el8

systemd_project systemdMatch239_18.el8_1.1

systemd_project systemdMatch239_50.el8

systemd_project systemdMatch239_41.el8_3

systemd_project systemdMatch219_78.el7_9.7

systemd_project systemdMatch239_45.el8

systemd_project systemdMatch239_36.el8

systemd_project systemdMatch219_42.el7_4.11

systemd_project systemdMatch208_20.ael7b_1.3

systemd_project systemdMatch239_48.el8

systemd_project systemdMatch239_18.el8_1.2

systemd_project systemdMatch219_57.el7_5.3

systemd_project systemdMatch219_78.el7_9.2

systemd_project systemdMatch239_45.el8_4.3

systemd_project systemdMatch219_73.el7_8.8

systemd_project systemdMatch239_18.el8_1.4

systemd_project systemdMatch219_57.el7_5.1

systemd_project systemdMatch239_29.el8

systemd_project systemdMatch208_99.atomic.0.el7

systemd_project systemdMatch219_62.el7_6.2

systemd_project systemdMatch239_58.el8_6.12

systemd_project systemdMatch219_62.el7_6.6.0.1

systemd_project systemdMatch239_27.el8

systemd_project systemdMatch208_20.ael7b_1.5

systemd_project systemdMatch239_13.el8

systemd_project systemdMatch219_62.el7_6.9

systemd_project systemdMatch219_62.el7_6.3

systemd_project systemdMatch219_67.el7

systemd_project systemdMatch219_73.el7_8.5

systemd_project systemdMatch239_41.el8_3.3

systemd_project systemdMatch239_41.el8_3.2

systemd_project systemdMatch239_21.el8

systemd_project systemdMatch239_41.el8_3.1

systemd_project systemdMatch219_62.el7_6.6

systemd_project systemdMatch219_78.el7

systemd_project systemdMatch239_58.el8

systemd_project systemdMatch239_40.el8

systemd_project systemdMatch239_55.el8

systemd_project systemdMatch239_44.el8

systemd_project systemdMatch239_13.el8_0.3

systemd_project systemdMatch219_62.el7_6.5

systemd_project systemdMatch219_73.el7_8.6

systemd_project systemdMatch239_43.el8

systemd_project systemdMatch239_42.el8

systemd_project systemdMatch239_18.el8

systemd_project systemdMatch219_73.el7_8.9

systemd_project systemdMatch219_62.el7

systemd_project systemdMatch239_51.el8_5.2

systemd_project systemdMatch239_31.el8_2.2

systemd_project systemdMatch219_62.el7.7.0.1

systemd_project systemdMatch239_45.el8_4.1

systemd_project systemdMatch219_67.el7_7.1.0.1

systemd_project systemdMatch239_30.el8_2

systemd_project systemdMatch219_73.el7.1

systemd_project systemdMatch219_62.el7_6.7

systemd_project systemdMatch219_78.el7_9.3

systemd_project systemdMatch239_18.el8_1.5

systemd_project systemdMatch219_67.el7_7.2

systemd_project systemdMatch208_20.ael7b_1.6

systemd_project systemdMatch239_13.el8_0.5

systemd_project systemdMatch239_56.el8

systemd_project systemdMatch239_51.el8

systemd_project systemdMatch208_20.ael7b_1.2

systemd_project systemdMatch219_78.el7_9.5

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2023/03/msg00032.html
security-tracker	www.security-tracker.debian.org/tracker/CVE-2023-26604
packetstormsecurity	www.packetstormsecurity.com/files/174130/systemd-246-Local-Root-Privilege-Escalation.html
blog	www.blog.compass-security.com/2012/10/dangerous-sudoers-entries-part-2-insecure-functionality/
github	www.github.com/systemd/systemd/blob/main/NEWS
medium	www.medium.com/%40zenmoviefornotification/saidov-maxim-cve-2023-26604-c1232a526ba7
medium	www.medium.com/@zenmoviefornotification/saidov-maxim-cve-2023-26604-c1232a526ba7
security	www.security.netapp.com/advisory/ntap-20230505-0009/

07 Mar 2025 21:27Current

7.3High risk

Vulners AI Score7.3

CVSS 3.17.8

EPSS0.05624

SSVC