Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

udev project udev vulnerabilities and exploits

(subscribe to this query)
6.9
CVSSv2
CVE-2011-0640
The default configuration of udev on Linux does not warn the user before enabling additional Human Interface Device (HID) functionality over USB, which allows user-assisted malicious users to execute arbitrary programs via crafted USB data, as demonstrated by keyboard and mouse d...
Udev Project Udev -
2.1
CVSSv2
CVE-2009-1186
Buffer overflow in the util_path_encode function in udev/lib/libudev-util.c in udev prior to 1.4.1 allows local users to cause a denial of service (service outage) via vectors that trigger a call with crafted arguments.
Udev Project UdevOpensuse Opensuse 11.1Opensuse Opensuse 11.0Opensuse Opensuse 10.3Suse Linux Enterprise Server 10Suse Linux Enterprise Desktop 10Suse Linux Enterprise Server 11Suse Linux Enterprise Desktop 11Suse Linux Enterprise Debuginfo 10Suse Linux Enterprise Debuginfo 11Debian Debian Linux 5.0Debian Debian Linux 4.0Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 6.06Fedoraproject Fedora 10Fedoraproject Fedora 9
7.2
CVSSv2
CVE-2009-1185
udev prior to 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space.
Udev Project UdevOpensuse Opensuse 11.1Opensuse Opensuse 11.0Opensuse Opensuse 10.3Suse Linux Enterprise Server 10Suse Linux Enterprise Desktop 10Suse Linux Enterprise Server 11Suse Linux Enterprise Desktop 11Suse Linux Enterprise Debuginfo 10Suse Linux Enterprise Debuginfo 11Debian Debian Linux 5.0Debian Debian Linux 4.0Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 6.06Fedoraproject Fedora 10Fedoraproject Fedora 9Juniper CtpviewJuniper Ctpview 7.1Juniper Ctpview 7.2
NA
CVE-2022-46338
g810-led 0.4.2, a LED configuration tool for Logitech Gx10 keyboards, contained a udev rule to make supported device nodes world-readable and writable, allowing any process on the system to read traffic from keyboards, including sensitive data.
G810-led Project G810-led 0.4.2Debian Debian Linux 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook