Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
d-bus vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-5148
gnome-remote-desktop: D-Bus system service in GNOME release 46 local information leaks (CVE-2024-5148)
2.1
CVSSv2
CVE-2008-3834
The dbus_signature_validate function in the D-bus library (libdbus) prior to 1.2.4 allows remote malicious users to cause a denial of service (application abort) via a message containing a malformed signature, which triggers a failed assertion error.
Freedesktop Dbus 1.1.1
Freedesktop Dbus1.1.0
Freedesktop Dbus 0.62
Freedesktop Dbus 0.61
Freedesktop Dbus 0.35
Freedesktop Dbus 0.34
Freedesktop Dbus 0.33
Freedesktop Dbus 0.22
Freedesktop Dbus 0.21
Freedesktop Dbus 0.8
Freedesktop Dbus 0.7
Freedesktop Dbus 1.0.2
Freedesktop Dbus1.0 Rc1
Freedesktop Dbus 0.92
Freedesktop Dbus 0.36.1
Freedesktop Dbus 0.36
Freedesktop Dbus 0.23.3
Freedesktop Dbus 0.23.2
Freedesktop Dbus 0.12
Freedesktop Dbus 0.11
Freedesktop Dbus 0.4
Freedesktop Dbus 0.3
1 EDB exploit
NA
CVE-2024-1930
No Limit on Number of Open Sessions / Bad Session Close Behaviour in dnf5daemon-server prior to 5.1.17 allows a malicious user to impact Availability via No Limit on Number of Open Sessions. There is no limit on how many sessions D-Bus clients may create using the `open_session()...
6.9
CVSSv2
CVE-2012-3524
libdbus 1.5.x and previous versions, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: libdbus maintainers state that ...
Freedesktop Libdbus 1.5.2
Freedesktop Libdbus 1.5.6
Freedesktop Libdbus 1.5.8
Freedesktop Libdbus 1.5.0
Freedesktop Libdbus 1.5.10
Freedesktop Libdbus
Freedesktop Libdbus 1.5.4
1 EDB exploit
4.4
CVSSv2
CVE-2019-25058
An issue exists in USBGuard prior to 1.1.0. On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow all USB devices to be connected in the future.
Usbguard Project Usbguard
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Debian Debian Linux 9.0
NA
CVE-2024-1929
Local Root Exploit via Configuration Dictionary in dnf5daemon-server prior to 5.1.17 allows a malicious user to impact Confidentiality and Integrity via Configuration Dictionary. There are issues with the D-Bus interface long before Polkit is invoked. The `org.rpm.dnf.v0.SessionM...
6.9
CVSSv2
CVE-2012-4425
libgio, when used in setuid or other privileged programs in spice-gtk and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: it could be argued that this is a vulnerability in the a...
Freedesktop Spice-gtk -
Gtk Libgio -
1 EDB exploit
2.1
CVSSv2
CVE-2009-4145
nm-connection-editor in NetworkManager (NM) 0.7.x exports connection objects over D-Bus upon actions in the connection editor GUI, which allows local users to obtain sensitive information by reading D-Bus signals, as demonstrated by using dbus-monitor to discover the password for...
Gnome Networkmanager 0.7.2
4.6
CVSSv2
CVE-2008-0595
dbus-daemon in D-Bus prior to 1.0.3, and 1.1.x prior to 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL int...
Mandrakesoft Mandrake Linux 2007.1
Mandrakesoft Mandrake Linux 2008.0
Mandrakesoft Mandrake Linux 2007
Redhat Enterprise Linux 5.0
Mandrakesoft Mandrake Linux 2007.0 X86 64
Redhat Enterprise Linux 5
Fedoraproject Fedora 7
Freedesktop Dbus
5
CVSSv2
CVE-2020-35450
Gobby 0.4.11 allows a NULL pointer dereference in the D-Bus handler for certain set_language calls.
Gobby Project Gobby 0.4.11
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »