Published: 24/02/2022 Updated: 07/11/2023

CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 392

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

An issue exists in USBGuard prior to 1.1.0. On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow all USB devices to be connected in the future.

Vulnerable Product	Search on Vulmon	Subscribe to Product
usbguard project usbguard
fedoraproject fedora 34
fedoraproject fedora 35
fedoraproject fedora 36
debian debian linux 9.0

Debian Bug report logs - #1008026 usbguard: CVE-2019-25058: unauthorized access via D-Bus Package: usbguard; Maintainer for usbguard is Birger Schacht <birger@debianorg>; Source for usbguard is src:usbguard (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 20 Mar 2022 19:03:01 UTC Sever ...

Synopsis Moderate: usbguard security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for usbguard is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as having a ...

Synopsis Moderate: usbguard security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for usbguard is now available for Red Hat Enterprise Linux 90 Extended Update SupportRed Hat Product Security has rate ...

Synopsis Moderate: usbguard security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for usbguard is now available for Red Hat Enterprise Linux 86 Extended Update SupportRed Hat Product Security has rate ...

Synopsis Moderate: usbguard security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for usbguard is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a ...

Synopsis Moderate: usbguard security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for usbguard is now available for Red Hat Enterprise Linux 84 Extended Update SupportRed Hat Product Security has rate ...

An issue was discovered in USBGuard before 110 On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow all USB devices to be connected in the future ...

CWE-863 https://github.com/USBGuard/usbguard/pull/531 https://github.com/USBGuard/usbguard/issues/273 https://github.com/USBGuard/usbguard/issues/403 https://lists.debian.org/debian-lts-announce/2022/04/msg00010.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B2ET6DU4IA64M6TMQ4X3SG2L6TRPLDN6/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3HQVTHHJFQLSWSXA7W3ZHRF72YMPI46/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D4QO5J5YEWVX27QXYOGL3BDRV3KXNRQI/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008026 https://nvd.nist.gov

CVE-2019-25058

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect