Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
d-bus project d-bus vulnerabilities and exploits
(subscribe to this query)
169
VMScore
CVE-2014-3636
D-Bus 1.3.0 up to and including 1.6.x prior to 1.6.24 and 1.8.x prior to 1.8.8 allows local users to (1) cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of file descriptors or (2) cause a denial of service (disconnect) v...
D-bus Project D-bus
Freedesktop Dbus 1.8.0
Freedesktop Dbus 1.8.6
Freedesktop Dbus 1.8.4
Freedesktop Dbus 1.8.2
Opensuse Opensuse 12.3
392
VMScore
CVE-2014-3635
Off-by-one error in D-Bus 1.3.0 up to and including 1.6.x prior to 1.6.24 and 1.8.x prior to 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set to an odd number, allows local users to cause a denial of service (dbus-daemon crash) or possibly execute ...
D-bus Project D-bus
Freedesktop Dbus 1.6.4
Freedesktop Dbus 1.6.0
Freedesktop Dbus 1.8.0
Freedesktop Dbus 1.6.20
Freedesktop Dbus 1.6.10
Freedesktop Dbus 1.6.12
Freedesktop Dbus 1.6.16
Freedesktop Dbus 1.6.8
Freedesktop Dbus 1.6.14
Freedesktop Dbus 1.6.6
Freedesktop Dbus 1.8.6
Freedesktop Dbus 1.6.18
Freedesktop Dbus 1.8.4
Freedesktop Dbus 1.8.2
Freedesktop Dbus 1.6.2
Opensuse Opensuse 12.3
187
VMScore
CVE-2014-3638
The bus_connections_check_reply function in config-parser.c in D-Bus prior to 1.6.24 and 1.8.x prior to 1.8.8 allows local users to cause a denial of service (CPU consumption) via a large number of method calls.
D-bus Project D-bus
Freedesktop Dbus 1.6.4
Freedesktop Dbus 1.6.0
Freedesktop Dbus 1.8.0
Freedesktop Dbus 1.6.20
Freedesktop Dbus 1.6.10
Freedesktop Dbus 1.6.12
Freedesktop Dbus 1.6.16
Freedesktop Dbus 1.6.8
Freedesktop Dbus 1.6.14
Freedesktop Dbus 1.6.6
Freedesktop Dbus 1.8.6
Freedesktop Dbus 1.6.18
Freedesktop Dbus 1.8.4
Freedesktop Dbus 1.8.2
Freedesktop Dbus 1.6.2
Opensuse Opensuse 12.3
187
VMScore
CVE-2014-3639
The dbus-daemon in D-Bus prior to 1.6.24 and 1.8.x prior to 1.8.8 does not properly close old connections, which allows local users to cause a denial of service (incomplete connection consumption and prevention of new connections) via a large number of incomplete connections.
Opensuse Opensuse 12.3
D-bus Project D-bus
Freedesktop Dbus 1.6.4
Freedesktop Dbus 1.6.0
Freedesktop Dbus 1.8.0
Freedesktop Dbus 1.6.20
Freedesktop Dbus 1.6.10
Freedesktop Dbus 1.6.12
Freedesktop Dbus 1.6.16
Freedesktop Dbus 1.6.8
Freedesktop Dbus 1.6.14
Freedesktop Dbus 1.6.6
Freedesktop Dbus 1.8.6
Freedesktop Dbus 1.6.18
Freedesktop Dbus 1.8.4
Freedesktop Dbus 1.8.2
Freedesktop Dbus 1.6.2
187
VMScore
CVE-2014-3477
The dbus-daemon in D-Bus 1.2.x up to and including 1.4.x, 1.6.x prior to 1.6.20, and 1.8.x prior to 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of servic...
Freedesktop Dbus 1.2.26
Freedesktop Dbus 1.2.20
Freedesktop Dbus 1.2.4
Freedesktop Dbus 1.2.1
Freedesktop Dbus 1.2.10
Freedesktop Dbus 1.2.6
Freedesktop Dbus 1.2.24
Freedesktop Dbus 1.2.22
D-bus Project D-bus 1.2.4.6
Freedesktop Dbus 1.2.18
Freedesktop Dbus 1.2.8
D-bus Project D-bus 1.2.4.2
Freedesktop Dbus 1.2.16
Freedesktop Dbus 1.2.12
Freedesktop Dbus 1.2.3
Freedesktop Dbus 1.2.14
D-bus Project D-bus 1.2.4.4
Freedesktop Dbus 1.6.4
Freedesktop Dbus 1.4.18
Freedesktop Dbus 1.6.0
Freedesktop Dbus 1.4.22
Freedesktop Dbus 1.2.30
614
VMScore
CVE-2013-4327
systemd does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-201...
Systemd Project Systemd
Debian Debian Linux 7.0
Canonical Ubuntu Linux 13.04
409
VMScore
CVE-2011-2200
The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x prior to 1.2.28, 1.4.x prior to 1.4.12, and 1.5.x prior to 1.5.4 does not properly handle a non-native byte order, which allows local users to cause a denial of service (connection loss), obtain...
Freedesktop Dbus 1.5.0
Freedesktop Dbus 1.5.2
Freedesktop Dbus 1.4.6
Freedesktop Dbus 1.4.8
Freedesktop Dbus 1.4.1
Freedesktop Dbus 1.4.0
Freedesktop Dbus 1.4.10
Freedesktop Dbus 1.4.4
D-bus Project D-bus 1.2.4.2
D-bus Project D-bus 1.2.4.4
Freedesktop Dbus 1.2.26
Freedesktop Dbus 1.2.20
Freedesktop Dbus 1.2.4
Freedesktop Dbus 1.2.1
Freedesktop Dbus 1.2.10
Freedesktop Dbus 1.2.6
Freedesktop Dbus 1.2.24
Freedesktop Dbus 1.2.22
Freedesktop Dbus 1.2.18
Freedesktop Dbus 1.2.8
Freedesktop Dbus 1.2.16
D-bus Project D-bus 1.2.4.6
187
VMScore
CVE-2010-4352
Stack consumption vulnerability in D-Bus (aka DBus) prior to 1.4.1 allows local users to cause a denial of service (daemon crash) via a message containing many nested variants.
D-bus Project D-bus
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3