Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/dbus@1.2.24-4%2Bsqueeze3
Typedeb
Namespacedebian
Namedbus
Version1.2.24-4+squeeze3
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-36cy-r7r4-wkhm
vulnerability_id VCID-36cy-r7r4-wkhm
summary A use-after-free flaw was found in D-Bus Development branch <= 1.13.16, dbus-1.12.x stable branch <= 1.12.18, and dbus-1.10.x and older branches <= 1.10.30 when a system has multiple usernames sharing the same UID. When a set of policy rules references these usernames, D-Bus may free some memory in the heap, which is still used by data structures necessary for the other usernames sharing the UID, possibly leading to a crash or other undefined behaviors
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35512.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35512.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-35512
reference_id
reference_type
scores
0
value 0.00034
scoring_system epss
scoring_elements 0.10286
published_at 2026-06-04T12:55:00Z
1
value 0.00034
scoring_system epss
scoring_elements 0.10331
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-35512
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35512
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35512
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1909101
reference_id 1909101
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-19T15:31:25Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=1909101
5
reference_url https://gitlab.freedesktop.org/dbus/dbus/-/issues/305#note_829128
reference_id 305#note_829128
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-19T15:31:25Z/
url https://gitlab.freedesktop.org/dbus/dbus/-/issues/305#note_829128
6
reference_url https://bugs.gentoo.org/755392
reference_id 755392
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-19T15:31:25Z/
url https://bugs.gentoo.org/755392
7
reference_url https://security.archlinux.org/AVG-1573
reference_id AVG-1573
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1573
8
reference_url https://security-tracker.debian.org/tracker/CVE-2020-35512
reference_id CVE-2020-35512
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-19T15:31:25Z/
url https://security-tracker.debian.org/tracker/CVE-2020-35512
9
reference_url https://usn.ubuntu.com/5244-1/
reference_id USN-5244-1
reference_type
scores
url https://usn.ubuntu.com/5244-1/
10
reference_url https://usn.ubuntu.com/5244-2/
reference_id USN-5244-2
reference_type
scores
url https://usn.ubuntu.com/5244-2/
fixed_packages
0
url pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1
purl pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.12.28-0%252Bdeb11u1
aliases CVE-2020-35512
risk_score 3.1
exploitability 0.5
weighted_severity 6.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-36cy-r7r4-wkhm
1
url VCID-9fwx-nsd6-q7dk
vulnerability_id VCID-9fwx-nsd6-q7dk
summary The dbus-daemon in D-Bus before 1.6.24 and 1.8.x before 1.8.8 does not properly close old connections, which allows local users to cause a denial of service (incomplete connection consumption and prevention of new connections) via a large number of incomplete connections.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3639.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3639.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3639
reference_id
reference_type
scores
0
value 0.00101
scoring_system epss
scoring_elements 0.27368
published_at 2026-06-04T12:55:00Z
1
value 0.00101
scoring_system epss
scoring_elements 0.27437
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3639
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3635
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3635
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3636
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3636
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3637
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3637
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3638
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3638
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3639
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3639
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1140532
reference_id 1140532
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1140532
8
reference_url https://security.gentoo.org/glsa/201412-12
reference_id GLSA-201412-12
reference_type
scores
url https://security.gentoo.org/glsa/201412-12
9
reference_url https://usn.ubuntu.com/2352-1/
reference_id USN-2352-1
reference_type
scores
url https://usn.ubuntu.com/2352-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2014-3639
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9fwx-nsd6-q7dk
2
url VCID-be5q-4qsm-j7fv
vulnerability_id VCID-be5q-4qsm-j7fv
summary D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 does not properly close connections for processes that have terminated, which allows local users to cause a denial of service via a D-bus message containing a D-Bus connection file descriptor.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3637.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3637.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3637
reference_id
reference_type
scores
0
value 0.00051
scoring_system epss
scoring_elements 0.16348
published_at 2026-06-04T12:55:00Z
1
value 0.00051
scoring_system epss
scoring_elements 0.16429
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3637
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3635
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3635
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3636
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3636
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3637
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3637
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3638
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3638
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3639
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3639
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1140527
reference_id 1140527
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1140527
8
reference_url https://security.gentoo.org/glsa/201412-12
reference_id GLSA-201412-12
reference_type
scores
url https://security.gentoo.org/glsa/201412-12
9
reference_url https://usn.ubuntu.com/2352-1/
reference_id USN-2352-1
reference_type
scores
url https://usn.ubuntu.com/2352-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2014-3637
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-be5q-4qsm-j7fv
3
url VCID-dbck-8yft-hfcv
vulnerability_id VCID-dbck-8yft-hfcv
summary An issue was discovered in dbus >= 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system service's private AF_UNIX socket could use this to make the system service reach its file descriptor limit, denying service to subsequent D-Bus clients.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12049.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12049.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-12049
reference_id
reference_type
scores
0
value 0.00086
scoring_system epss
scoring_elements 0.24862
published_at 2026-06-04T12:55:00Z
1
value 0.00086
scoring_system epss
scoring_elements 0.24958
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-12049
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12049
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12049
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1849041
reference_id 1849041
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1849041
5
reference_url https://security.archlinux.org/ASA-202006-9
reference_id ASA-202006-9
reference_type
scores
url https://security.archlinux.org/ASA-202006-9
6
reference_url https://security.archlinux.org/AVG-1183
reference_id AVG-1183
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1183
7
reference_url https://security.gentoo.org/glsa/202007-46
reference_id GLSA-202007-46
reference_type
scores
url https://security.gentoo.org/glsa/202007-46
8
reference_url https://access.redhat.com/errata/RHSA-2020:2894
reference_id RHSA-2020:2894
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:2894
9
reference_url https://access.redhat.com/errata/RHSA-2020:3014
reference_id RHSA-2020:3014
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3014
10
reference_url https://access.redhat.com/errata/RHSA-2020:3044
reference_id RHSA-2020:3044
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3044
11
reference_url https://access.redhat.com/errata/RHSA-2020:3298
reference_id RHSA-2020:3298
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3298
12
reference_url https://usn.ubuntu.com/4398-1/
reference_id USN-4398-1
reference_type
scores
url https://usn.ubuntu.com/4398-1/
13
reference_url https://usn.ubuntu.com/4398-2/
reference_id USN-4398-2
reference_type
scores
url https://usn.ubuntu.com/4398-2/
fixed_packages
0
url pkg:deb/debian/dbus@1.12.20-0%2Bdeb10u1
purl pkg:deb/debian/dbus@1.12.20-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-fa4x-mag7-7yd3
2
vulnerability VCID-faxp-g9wk-gud1
3
vulnerability VCID-t59z-41wj-5fes
4
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.12.20-0%252Bdeb10u1
aliases CVE-2020-12049
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dbck-8yft-hfcv
4
url VCID-ds8h-cht5-qycy
vulnerability_id VCID-ds8h-cht5-qycy
summary The configure script in D-Bus (aka DBus) 1.2.x before 1.2.28 allows local users to overwrite arbitrary files via a symlink attack on an unspecified file in /tmp/.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2533.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2533.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-2533
reference_id
reference_type
scores
0
value 0.0003
scoring_system epss
scoring_elements 0.09143
published_at 2026-06-04T12:55:00Z
1
value 0.0003
scoring_system epss
scoring_elements 0.09186
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-2533
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2533
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2533
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=715540
reference_id 715540
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=715540
4
reference_url https://security.gentoo.org/glsa/201110-14
reference_id GLSA-201110-14
reference_type
scores
url https://security.gentoo.org/glsa/201110-14
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
aliases CVE-2011-2533
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ds8h-cht5-qycy
5
url VCID-fa4x-mag7-7yd3
vulnerability_id VCID-fa4x-mag7-7yd3
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42010.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42010.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-42010
reference_id
reference_type
scores
0
value 0.0007
scoring_system epss
scoring_elements 0.21705
published_at 2026-06-05T12:55:00Z
1
value 0.0007
scoring_system epss
scoring_elements 0.21627
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-42010
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42010
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42011
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42012
5
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
6
reference_url https://www.openwall.com/lists/oss-security/2022/10/06/1
reference_id 1
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-02T21:14:31Z/
url https://www.openwall.com/lists/oss-security/2022/10/06/1
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2133616
reference_id 2133616
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2133616
8
reference_url https://gitlab.freedesktop.org/dbus/dbus/-/issues/418
reference_id 418
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-02T21:14:31Z/
url https://gitlab.freedesktop.org/dbus/dbus/-/issues/418
9
reference_url https://security.archlinux.org/AVG-2805
reference_id AVG-2805
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2805
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E4CO7N226I3X5FNBR2MACCH6TS764VJP/
reference_id E4CO7N226I3X5FNBR2MACCH6TS764VJP
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-02T21:14:31Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E4CO7N226I3X5FNBR2MACCH6TS764VJP/
11
reference_url https://security.gentoo.org/glsa/202305-08
reference_id GLSA-202305-08
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-02T21:14:31Z/
url https://security.gentoo.org/glsa/202305-08
12
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ND74SKN56BCYL3QLEAAB6E64UUBRA5UG/
reference_id ND74SKN56BCYL3QLEAAB6E64UUBRA5UG
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-02T21:14:31Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ND74SKN56BCYL3QLEAAB6E64UUBRA5UG/
13
reference_url https://access.redhat.com/errata/RHSA-2022:8812
reference_id RHSA-2022:8812
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8812
14
reference_url https://access.redhat.com/errata/RHSA-2022:8977
reference_id RHSA-2022:8977
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8977
15
reference_url https://access.redhat.com/errata/RHSA-2023:0096
reference_id RHSA-2023:0096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0096
16
reference_url https://access.redhat.com/errata/RHSA-2023:0335
reference_id RHSA-2023:0335
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0335
17
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SQCSLMCK2XGX23R2DKW2MSAICQAK6MT2/
reference_id SQCSLMCK2XGX23R2DKW2MSAICQAK6MT2
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-02T21:14:31Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SQCSLMCK2XGX23R2DKW2MSAICQAK6MT2/
18
reference_url https://usn.ubuntu.com/5704-1/
reference_id USN-5704-1
reference_type
scores
url https://usn.ubuntu.com/5704-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1
purl pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.12.28-0%252Bdeb11u1
aliases CVE-2022-42010
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fa4x-mag7-7yd3
6
url VCID-faxp-g9wk-gud1
vulnerability_id VCID-faxp-g9wk-gud1
summary D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon. If a privileged user with control over the dbus-daemon is using the org.freedesktop.DBus.Monitoring interface to monitor message bus traffic, then an unprivileged user with the ability to connect to the same dbus-daemon can cause a dbus-daemon crash under some circumstances via an unreplyable message. When done on the well-known system bus, this is a denial-of-service vulnerability. The fixed versions are 1.12.28, 1.14.8, and 1.15.6.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-34969.json
reference_id
reference_type
scores
0
value 6.2
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-34969.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-34969
reference_id
reference_type
scores
0
value 0.0094
scoring_system epss
scoring_elements 0.76637
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-34969
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34969
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34969
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1037151
reference_id 1037151
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1037151
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2213166
reference_id 2213166
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2213166
6
reference_url https://gitlab.freedesktop.org/dbus/dbus/-/issues/457
reference_id 457
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2023-12-11T19:00:29Z/
url https://gitlab.freedesktop.org/dbus/dbus/-/issues/457
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZYCDRMD7B4XO4HF6C6YTLH4YUD7TANP/
reference_id BZYCDRMD7B4XO4HF6C6YTLH4YUD7TANP
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2023-12-11T19:00:29Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZYCDRMD7B4XO4HF6C6YTLH4YUD7TANP/
8
reference_url https://lists.debian.org/debian-lts-announce/2023/10/msg00033.html
reference_id msg00033.html
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2023-12-11T19:00:29Z/
url https://lists.debian.org/debian-lts-announce/2023/10/msg00033.html
9
reference_url https://security.netapp.com/advisory/ntap-20231208-0007/
reference_id ntap-20231208-0007
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2023-12-11T19:00:29Z/
url https://security.netapp.com/advisory/ntap-20231208-0007/
10
reference_url https://access.redhat.com/errata/RHSA-2023:4498
reference_id RHSA-2023:4498
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4498
11
reference_url https://access.redhat.com/errata/RHSA-2023:4569
reference_id RHSA-2023:4569
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4569
12
reference_url https://access.redhat.com/errata/RHSA-2023:5193
reference_id RHSA-2023:5193
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5193
13
reference_url https://usn.ubuntu.com/6372-1/
reference_id USN-6372-1
reference_type
scores
url https://usn.ubuntu.com/6372-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1
purl pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.12.28-0%252Bdeb11u1
aliases CVE-2023-34969
risk_score 2.8
exploitability 0.5
weighted_severity 5.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-faxp-g9wk-gud1
7
url VCID-fw8a-ea75-wfc2
vulnerability_id VCID-fw8a-ea75-wfc2
summary D-Bus 1.4.x through 1.6.x before 1.6.30, 1.8.x before 1.8.16, and 1.9.x before 1.9.10 does not validate the source of ActivationFailure signals, which allows local users to cause a denial of service (activation failure error returned) by leveraging a race condition involving sending an ActivationFailure signal before systemd responds.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0245.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0245.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-0245
reference_id
reference_type
scores
0
value 0.00092
scoring_system epss
scoring_elements 0.25815
published_at 2026-06-04T12:55:00Z
1
value 0.00092
scoring_system epss
scoring_elements 0.25917
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-0245
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0245
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0245
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1186775
reference_id 1186775
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1186775
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777545
reference_id 777545
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777545
5
reference_url https://security.gentoo.org/glsa/201503-02
reference_id GLSA-201503-02
reference_type
scores
url https://security.gentoo.org/glsa/201503-02
6
reference_url https://usn.ubuntu.com/3116-1/
reference_id USN-3116-1
reference_type
scores
url https://usn.ubuntu.com/3116-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2015-0245
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fw8a-ea75-wfc2
8
url VCID-gz93-46e4-buh9
vulnerability_id VCID-gz93-46e4-buh9
summary D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 allows local users to (1) cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of file descriptors or (2) cause a denial of service (disconnect) via multiple messages that combine to have more than the allowed number of file descriptors for a single sendmsg call.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3636.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3636.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3636
reference_id
reference_type
scores
0
value 0.00096
scoring_system epss
scoring_elements 0.26578
published_at 2026-06-04T12:55:00Z
1
value 0.00096
scoring_system epss
scoring_elements 0.2668
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3636
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3635
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3635
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3636
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3636
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3637
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3637
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3638
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3638
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3639
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3639
7
reference_url http://www.securitytracker.com/id/1030864
reference_id 1030864
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T17:04:09Z/
url http://www.securitytracker.com/id/1030864
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1140525
reference_id 1140525
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1140525
9
reference_url http://secunia.com/advisories/61378
reference_id 61378
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T17:04:09Z/
url http://secunia.com/advisories/61378
10
reference_url http://www.openwall.com/lists/oss-security/2014/09/16/9
reference_id 9
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T17:04:09Z/
url http://www.openwall.com/lists/oss-security/2014/09/16/9
11
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2015:176
reference_id advisories?name=MDVSA-2015:176
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T17:04:09Z/
url http://www.mandriva.com/security/advisories?name=MDVSA-2015:176
12
reference_url http://www.debian.org/security/2014/dsa-3026
reference_id dsa-3026
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T17:04:09Z/
url http://www.debian.org/security/2014/dsa-3026
13
reference_url https://security.gentoo.org/glsa/201412-12
reference_id GLSA-201412-12
reference_type
scores
url https://security.gentoo.org/glsa/201412-12
14
reference_url http://advisories.mageia.org/MGASA-2014-0395.html
reference_id MGASA-2014-0395.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T17:04:09Z/
url http://advisories.mageia.org/MGASA-2014-0395.html
15
reference_url http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html
reference_id msg00049.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T17:04:09Z/
url http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html
16
reference_url https://bugs.freedesktop.org/show_bug.cgi?id=82820
reference_id show_bug.cgi?id=82820
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T17:04:09Z/
url https://bugs.freedesktop.org/show_bug.cgi?id=82820
17
reference_url https://usn.ubuntu.com/2352-1/
reference_id USN-2352-1
reference_type
scores
url https://usn.ubuntu.com/2352-1/
18
reference_url http://www.ubuntu.com/usn/USN-2352-1
reference_id USN-2352-1
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T17:04:09Z/
url http://www.ubuntu.com/usn/USN-2352-1
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2014-3636
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gz93-46e4-buh9
9
url VCID-mkkj-84n6-73fn
vulnerability_id VCID-mkkj-84n6-73fn
summary The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28, 1.4.x before 1.4.12, and 1.5.x before 1.5.4 does not properly handle a non-native byte order, which allows local users to cause a denial of service (connection loss), obtain potentially sensitive information, or conduct unspecified state-modification attacks via crafted messages.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2200.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2200.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-2200
reference_id
reference_type
scores
0
value 0.00098
scoring_system epss
scoring_elements 0.26837
published_at 2026-06-04T12:55:00Z
1
value 0.00098
scoring_system epss
scoring_elements 0.26939
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-2200
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2200
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2200
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629938
reference_id 629938
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629938
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=712676
reference_id 712676
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=712676
5
reference_url https://security.gentoo.org/glsa/201110-14
reference_id GLSA-201110-14
reference_type
scores
url https://security.gentoo.org/glsa/201110-14
6
reference_url https://access.redhat.com/errata/RHSA-2011:1132
reference_id RHSA-2011:1132
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:1132
7
reference_url https://usn.ubuntu.com/1176-1/
reference_id USN-1176-1
reference_type
scores
url https://usn.ubuntu.com/1176-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
aliases CVE-2011-2200
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mkkj-84n6-73fn
10
url VCID-mma8-s29r-4qg4
vulnerability_id VCID-mma8-s29r-4qg4
summary The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service (initialization failure and exit) or possibly conduct a side-channel attack via a D-Bus message to an inactive service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3477.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3477.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3477
reference_id
reference_type
scores
0
value 0.00085
scoring_system epss
scoring_elements 0.24702
published_at 2026-06-05T12:55:00Z
1
value 0.00085
scoring_system epss
scoring_elements 0.24601
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3477
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3477
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3477
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3532
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3532
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3533
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3533
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1104791
reference_id 1104791
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1104791
6
reference_url http://seclists.org/oss-sec/2014/q2/509
reference_id 509
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://seclists.org/oss-sec/2014/q2/509
7
reference_url http://secunia.com/advisories/59428
reference_id 59428
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://secunia.com/advisories/59428
8
reference_url http://secunia.com/advisories/59611
reference_id 59611
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://secunia.com/advisories/59611
9
reference_url http://secunia.com/advisories/59798
reference_id 59798
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://secunia.com/advisories/59798
10
reference_url http://www.securityfocus.com/bid/67986
reference_id 67986
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://www.securityfocus.com/bid/67986
11
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2015:176
reference_id advisories?name=MDVSA-2015:176
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://www.mandriva.com/security/advisories?name=MDVSA-2015:176
12
reference_url http://www.debian.org/security/2014/dsa-2971
reference_id dsa-2971
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://www.debian.org/security/2014/dsa-2971
13
reference_url https://security.gentoo.org/glsa/201412-12
reference_id GLSA-201412-12
reference_type
scores
url https://security.gentoo.org/glsa/201412-12
14
reference_url http://cgit.freedesktop.org/dbus/dbus/commit/?h=dbus-1.8&id=24c590703ca47eb71ddef453de43126b90954567
reference_id ?h=dbus-1.8&id=24c590703ca47eb71ddef453de43126b90954567
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://cgit.freedesktop.org/dbus/dbus/commit/?h=dbus-1.8&id=24c590703ca47eb71ddef453de43126b90954567
15
reference_url http://advisories.mageia.org/MGASA-2014-0266.html
reference_id MGASA-2014-0266.html
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://advisories.mageia.org/MGASA-2014-0266.html
16
reference_url http://lists.opensuse.org/opensuse-updates/2014-07/msg00012.html
reference_id msg00012.html
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://lists.opensuse.org/opensuse-updates/2014-07/msg00012.html
17
reference_url http://lists.opensuse.org/opensuse-updates/2014-06/msg00042.html
reference_id msg00042.html
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://lists.opensuse.org/opensuse-updates/2014-06/msg00042.html
18
reference_url http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html
reference_id msg00049.html
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html
19
reference_url https://bugs.freedesktop.org/show_bug.cgi?id=78979
reference_id show_bug.cgi?id=78979
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T20:11:29Z/
url https://bugs.freedesktop.org/show_bug.cgi?id=78979
20
reference_url https://usn.ubuntu.com/2275-1/
reference_id USN-2275-1
reference_type
scores
url https://usn.ubuntu.com/2275-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2014-3477
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mma8-s29r-4qg4
11
url VCID-q69r-s5rq-b7h5
vulnerability_id VCID-q69r-s5rq-b7h5
summary Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set to an odd number, allows local users to cause a denial of service (dbus-daemon crash) or possibly execute arbitrary code by sending one more file descriptor than the limit, which triggers a heap-based buffer overflow or an assertion failure.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3635.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3635.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3635
reference_id
reference_type
scores
0
value 0.00173
scoring_system epss
scoring_elements 0.38414
published_at 2026-06-04T12:55:00Z
1
value 0.00173
scoring_system epss
scoring_elements 0.38502
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3635
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3635
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3635
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3636
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3636
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3637
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3637
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3638
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3638
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3639
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3639
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1140523
reference_id 1140523
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1140523
8
reference_url https://security.gentoo.org/glsa/201412-12
reference_id GLSA-201412-12
reference_type
scores
url https://security.gentoo.org/glsa/201412-12
9
reference_url https://usn.ubuntu.com/2352-1/
reference_id USN-2352-1
reference_type
scores
url https://usn.ubuntu.com/2352-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2014-3635
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q69r-s5rq-b7h5
12
url VCID-qhe4-26mq-bfhn
vulnerability_id VCID-qhe4-26mq-bfhn
summary The _dbus_printf_string_upper_bound function in dbus/dbus-sysdeps-unix.c in D-Bus (aka DBus) 1.4.x before 1.4.26, 1.6.x before 1.6.12, and 1.7.x before 1.7.4 allows local users to cause a denial of service (service crash) via a crafted message.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2168.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2168.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-2168
reference_id
reference_type
scores
0
value 0.00091
scoring_system epss
scoring_elements 0.25695
published_at 2026-06-04T12:55:00Z
1
value 0.00091
scoring_system epss
scoring_elements 0.25798
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-2168
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2168
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2168
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=974109
reference_id 974109
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=974109
4
reference_url https://security.gentoo.org/glsa/201308-02
reference_id GLSA-201308-02
reference_type
scores
url https://security.gentoo.org/glsa/201308-02
5
reference_url https://usn.ubuntu.com/1874-1/
reference_id USN-1874-1
reference_type
scores
url https://usn.ubuntu.com/1874-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2013-2168
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qhe4-26mq-bfhn
13
url VCID-rex4-wk91-dqam
vulnerability_id VCID-rex4-wk91-dqam
summary access restriction bypass
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12749.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12749.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-12749
reference_id
reference_type
scores
0
value 0.00046
scoring_system epss
scoring_elements 0.1455
published_at 2026-06-05T12:55:00Z
1
value 0.00046
scoring_system epss
scoring_elements 0.1448
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-12749
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12749
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12749
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url http://www.securityfocus.com/bid/108751
reference_id 108751
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url http://www.securityfocus.com/bid/108751
5
reference_url https://seclists.org/bugtraq/2019/Jun/16
reference_id 16
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://seclists.org/bugtraq/2019/Jun/16
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1719344
reference_id 1719344
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1719344
7
reference_url https://www.openwall.com/lists/oss-security/2019/06/11/2
reference_id 2
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://www.openwall.com/lists/oss-security/2019/06/11/2
8
reference_url http://www.openwall.com/lists/oss-security/2019/06/11/2
reference_id 2
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url http://www.openwall.com/lists/oss-security/2019/06/11/2
9
reference_url https://usn.ubuntu.com/4015-1/
reference_id 4015-1
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://usn.ubuntu.com/4015-1/
10
reference_url https://usn.ubuntu.com/4015-2/
reference_id 4015-2
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://usn.ubuntu.com/4015-2/
11
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930375
reference_id 930375
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930375
12
reference_url https://security.archlinux.org/ASA-201906-16
reference_id ASA-201906-16
reference_type
scores
url https://security.archlinux.org/ASA-201906-16
13
reference_url https://security.archlinux.org/AVG-974
reference_id AVG-974
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-974
14
reference_url https://www.debian.org/security/2019/dsa-4462
reference_id dsa-4462
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://www.debian.org/security/2019/dsa-4462
15
reference_url https://security.gentoo.org/glsa/201909-08
reference_id GLSA-201909-08
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://security.gentoo.org/glsa/201909-08
16
reference_url https://lists.debian.org/debian-lts-announce/2019/06/msg00005.html
reference_id msg00005.html
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://lists.debian.org/debian-lts-announce/2019/06/msg00005.html
17
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00026.html
reference_id msg00026.html
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00026.html
18
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00059.html
reference_id msg00059.html
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00059.html
19
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00092.html
reference_id msg00092.html
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00092.html
20
reference_url https://access.redhat.com/errata/RHSA-2019:1726
reference_id RHSA-2019:1726
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://access.redhat.com/errata/RHSA-2019:1726
21
reference_url https://access.redhat.com/errata/RHSA-2019:2868
reference_id RHSA-2019:2868
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://access.redhat.com/errata/RHSA-2019:2868
22
reference_url https://access.redhat.com/errata/RHSA-2019:2870
reference_id RHSA-2019:2870
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://access.redhat.com/errata/RHSA-2019:2870
23
reference_url https://access.redhat.com/errata/RHSA-2019:3707
reference_id RHSA-2019:3707
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://access.redhat.com/errata/RHSA-2019:3707
24
reference_url https://access.redhat.com/errata/RHSA-2020:4032
reference_id RHSA-2020:4032
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4032
25
reference_url https://access.redhat.com/errata/RHSA-2021:0949
reference_id RHSA-2021:0949
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0949
26
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V2CQF37O73VH2JDVX2ILX2KD2KLXLQOU/
reference_id V2CQF37O73VH2JDVX2ILX2KD2KLXLQOU
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T19:57:51Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V2CQF37O73VH2JDVX2ILX2KD2KLXLQOU/
fixed_packages
0
url pkg:deb/debian/dbus@1.10.32-0%2Bdeb9u1
purl pkg:deb/debian/dbus@1.10.32-0%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.10.32-0%252Bdeb9u1
1
url pkg:deb/debian/dbus@1.12.20-0%2Bdeb10u1
purl pkg:deb/debian/dbus@1.12.20-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-fa4x-mag7-7yd3
2
vulnerability VCID-faxp-g9wk-gud1
3
vulnerability VCID-t59z-41wj-5fes
4
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.12.20-0%252Bdeb10u1
aliases CVE-2019-12749
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rex4-wk91-dqam
14
url VCID-sb4y-sjrz-hbfy
vulnerability_id VCID-sb4y-sjrz-hbfy
summary The bus_connections_check_reply function in config-parser.c in D-Bus before 1.6.24 and 1.8.x before 1.8.8 allows local users to cause a denial of service (CPU consumption) via a large number of method calls.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3638.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3638.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3638
reference_id
reference_type
scores
0
value 0.00098
scoring_system epss
scoring_elements 0.26944
published_at 2026-06-04T12:55:00Z
1
value 0.00098
scoring_system epss
scoring_elements 0.27041
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3638
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3635
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3635
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3636
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3636
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3637
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3637
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3638
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3638
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3639
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3639
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1140529
reference_id 1140529
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1140529
8
reference_url https://security.gentoo.org/glsa/201412-12
reference_id GLSA-201412-12
reference_type
scores
url https://security.gentoo.org/glsa/201412-12
9
reference_url https://usn.ubuntu.com/2352-1/
reference_id USN-2352-1
reference_type
scores
url https://usn.ubuntu.com/2352-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2014-3638
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sb4y-sjrz-hbfy
15
url VCID-sm1d-3abg-x7es
vulnerability_id VCID-sm1d-3abg-x7es
summary dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service (disconnect) via a certain sequence of crafted messages that cause the dbus-daemon to forward a message containing an invalid file descriptor.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3533.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3533.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3533
reference_id
reference_type
scores
0
value 0.00089
scoring_system epss
scoring_elements 0.25382
published_at 2026-06-04T12:55:00Z
1
value 0.00089
scoring_system epss
scoring_elements 0.25479
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3533
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3477
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3477
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3532
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3532
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3533
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3533
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1114416
reference_id 1114416
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1114416
6
reference_url https://security.gentoo.org/glsa/201412-12
reference_id GLSA-201412-12
reference_type
scores
url https://security.gentoo.org/glsa/201412-12
7
reference_url https://usn.ubuntu.com/2275-1/
reference_id USN-2275-1
reference_type
scores
url https://usn.ubuntu.com/2275-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2014-3533
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sm1d-3abg-x7es
16
url VCID-su2j-hppa-kfc6
vulnerability_id VCID-su2j-hppa-kfc6
summary D-Bus 1.3.0 through 1.6.x before 1.6.26, 1.8.x before 1.8.10, and 1.9.x before 1.9.2 allows local users to cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of file descriptors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3636.1.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-7824.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-7824.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-7824
reference_id
reference_type
scores
0
value 0.00093
scoring_system epss
scoring_elements 0.26035
published_at 2026-06-04T12:55:00Z
1
value 0.00093
scoring_system epss
scoring_elements 0.26138
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-7824
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7824
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7824
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1173555
reference_id 1173555
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1173555
4
reference_url https://security.gentoo.org/glsa/201412-12
reference_id GLSA-201412-12
reference_type
scores
url https://security.gentoo.org/glsa/201412-12
5
reference_url https://usn.ubuntu.com/2425-1/
reference_id USN-2425-1
reference_type
scores
url https://usn.ubuntu.com/2425-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2014-7824
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-su2j-hppa-kfc6
17
url VCID-t59z-41wj-5fes
vulnerability_id VCID-t59z-41wj-5fes
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42011.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42011.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-42011
reference_id
reference_type
scores
0
value 0.00131
scoring_system epss
scoring_elements 0.32244
published_at 2026-06-05T12:55:00Z
1
value 0.00131
scoring_system epss
scoring_elements 0.32172
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-42011
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42010
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42011
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42012
5
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
6
reference_url https://www.openwall.com/lists/oss-security/2022/10/06/1
reference_id 1
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T17:41:31Z/
url https://www.openwall.com/lists/oss-security/2022/10/06/1
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2133617
reference_id 2133617
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2133617
8
reference_url https://gitlab.freedesktop.org/dbus/dbus/-/issues/413
reference_id 413
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T17:41:31Z/
url https://gitlab.freedesktop.org/dbus/dbus/-/issues/413
9
reference_url https://security.archlinux.org/AVG-2805
reference_id AVG-2805
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2805
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E4CO7N226I3X5FNBR2MACCH6TS764VJP/
reference_id E4CO7N226I3X5FNBR2MACCH6TS764VJP
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T17:41:31Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E4CO7N226I3X5FNBR2MACCH6TS764VJP/
11
reference_url https://security.gentoo.org/glsa/202305-08
reference_id GLSA-202305-08
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T17:41:31Z/
url https://security.gentoo.org/glsa/202305-08
12
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ND74SKN56BCYL3QLEAAB6E64UUBRA5UG/
reference_id ND74SKN56BCYL3QLEAAB6E64UUBRA5UG
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T17:41:31Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ND74SKN56BCYL3QLEAAB6E64UUBRA5UG/
13
reference_url https://access.redhat.com/errata/RHSA-2022:8812
reference_id RHSA-2022:8812
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8812
14
reference_url https://access.redhat.com/errata/RHSA-2022:8977
reference_id RHSA-2022:8977
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8977
15
reference_url https://access.redhat.com/errata/RHSA-2023:0096
reference_id RHSA-2023:0096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0096
16
reference_url https://access.redhat.com/errata/RHSA-2023:0335
reference_id RHSA-2023:0335
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0335
17
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SQCSLMCK2XGX23R2DKW2MSAICQAK6MT2/
reference_id SQCSLMCK2XGX23R2DKW2MSAICQAK6MT2
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T17:41:31Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SQCSLMCK2XGX23R2DKW2MSAICQAK6MT2/
18
reference_url https://usn.ubuntu.com/5704-1/
reference_id USN-5704-1
reference_type
scores
url https://usn.ubuntu.com/5704-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1
purl pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.12.28-0%252Bdeb11u1
aliases CVE-2022-42011
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t59z-41wj-5fes
18
url VCID-t8xu-6ncf-que3
vulnerability_id VCID-t8xu-6ncf-que3
summary dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service (system-bus disconnect of other services or applications) by sending a message containing a file descriptor, then exceeding the maximum recursion depth before the initial message is forwarded.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3532.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3532.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3532
reference_id
reference_type
scores
0
value 0.00123
scoring_system epss
scoring_elements 0.3093
published_at 2026-06-04T12:55:00Z
1
value 0.00123
scoring_system epss
scoring_elements 0.30996
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3532
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3477
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3477
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3532
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3532
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3533
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3533
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1114414
reference_id 1114414
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1114414
6
reference_url https://security.gentoo.org/glsa/201412-12
reference_id GLSA-201412-12
reference_type
scores
url https://security.gentoo.org/glsa/201412-12
7
reference_url https://usn.ubuntu.com/2275-1/
reference_id USN-2275-1
reference_type
scores
url https://usn.ubuntu.com/2275-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
1
url pkg:deb/debian/dbus@1.8.16-1
purl pkg:deb/debian/dbus@1.8.16-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-dbck-8yft-hfcv
2
vulnerability VCID-fa4x-mag7-7yd3
3
vulnerability VCID-faxp-g9wk-gud1
4
vulnerability VCID-rex4-wk91-dqam
5
vulnerability VCID-t59z-41wj-5fes
6
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.16-1
aliases CVE-2014-3532
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t8xu-6ncf-que3
19
url VCID-tgwz-nsd4-qbd1
vulnerability_id VCID-tgwz-nsd4-qbd1
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42012.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42012.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-42012
reference_id
reference_type
scores
0
value 0.00208
scoring_system epss
scoring_elements 0.43268
published_at 2026-06-05T12:55:00Z
1
value 0.00208
scoring_system epss
scoring_elements 0.43195
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-42012
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42010
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42011
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42012
5
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
6
reference_url https://www.openwall.com/lists/oss-security/2022/10/06/1
reference_id 1
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-22T22:37:41Z/
url https://www.openwall.com/lists/oss-security/2022/10/06/1
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2133618
reference_id 2133618
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2133618
8
reference_url https://gitlab.freedesktop.org/dbus/dbus/-/issues/417
reference_id 417
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-22T22:37:41Z/
url https://gitlab.freedesktop.org/dbus/dbus/-/issues/417
9
reference_url https://security.archlinux.org/AVG-2805
reference_id AVG-2805
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2805
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E4CO7N226I3X5FNBR2MACCH6TS764VJP/
reference_id E4CO7N226I3X5FNBR2MACCH6TS764VJP
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-22T22:37:41Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E4CO7N226I3X5FNBR2MACCH6TS764VJP/
11
reference_url https://security.gentoo.org/glsa/202305-08
reference_id GLSA-202305-08
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-22T22:37:41Z/
url https://security.gentoo.org/glsa/202305-08
12
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ND74SKN56BCYL3QLEAAB6E64UUBRA5UG/
reference_id ND74SKN56BCYL3QLEAAB6E64UUBRA5UG
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-22T22:37:41Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ND74SKN56BCYL3QLEAAB6E64UUBRA5UG/
13
reference_url https://access.redhat.com/errata/RHSA-2022:8812
reference_id RHSA-2022:8812
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8812
14
reference_url https://access.redhat.com/errata/RHSA-2022:8977
reference_id RHSA-2022:8977
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8977
15
reference_url https://access.redhat.com/errata/RHSA-2023:0096
reference_id RHSA-2023:0096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0096
16
reference_url https://access.redhat.com/errata/RHSA-2023:0335
reference_id RHSA-2023:0335
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0335
17
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SQCSLMCK2XGX23R2DKW2MSAICQAK6MT2/
reference_id SQCSLMCK2XGX23R2DKW2MSAICQAK6MT2
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-22T22:37:41Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SQCSLMCK2XGX23R2DKW2MSAICQAK6MT2/
18
reference_url https://usn.ubuntu.com/5704-1/
reference_id USN-5704-1
reference_type
scores
url https://usn.ubuntu.com/5704-1/
fixed_packages
0
url pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1
purl pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.12.28-0%252Bdeb11u1
aliases CVE-2022-42012
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tgwz-nsd4-qbd1
20
url VCID-xygf-djgv-67fm
vulnerability_id VCID-xygf-djgv-67fm
summary libdbus 1.5.x and earlier, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: libdbus maintainers state that this is a vulnerability in the applications that do not cleanse environment variables, not in libdbus itself: "we do not support use of libdbus in setuid binaries that do not sanitize their environment before their first call into libdbus."
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3524.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3524.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3524
reference_id
reference_type
scores
0
value 0.36149
scoring_system epss
scoring_elements 0.97188
published_at 2026-06-04T12:55:00Z
1
value 0.36149
scoring_system epss
scoring_elements 0.97192
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3524
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3524
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3524
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689070
reference_id 689070
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689070
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=847402
reference_id 847402
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=847402
5
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/21323.c
reference_id CVE-2012-3524;OSVDB-85480;CVE-2012-4425
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/21323.c
6
reference_url https://security.gentoo.org/glsa/201406-01
reference_id GLSA-201406-01
reference_type
scores
url https://security.gentoo.org/glsa/201406-01
7
reference_url https://access.redhat.com/errata/RHSA-2012:1261
reference_id RHSA-2012:1261
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1261
8
reference_url https://usn.ubuntu.com/1576-1/
reference_id USN-1576-1
reference_type
scores
url https://usn.ubuntu.com/1576-1/
9
reference_url https://usn.ubuntu.com/1576-2/
reference_id USN-1576-2
reference_type
scores
url https://usn.ubuntu.com/1576-2/
fixed_packages
0
url pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
purl pkg:deb/debian/dbus@1.6.8-1%2Bdeb7u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-36cy-r7r4-wkhm
1
vulnerability VCID-9fwx-nsd6-q7dk
2
vulnerability VCID-be5q-4qsm-j7fv
3
vulnerability VCID-dbck-8yft-hfcv
4
vulnerability VCID-fa4x-mag7-7yd3
5
vulnerability VCID-faxp-g9wk-gud1
6
vulnerability VCID-fw8a-ea75-wfc2
7
vulnerability VCID-gz93-46e4-buh9
8
vulnerability VCID-mma8-s29r-4qg4
9
vulnerability VCID-q69r-s5rq-b7h5
10
vulnerability VCID-qhe4-26mq-bfhn
11
vulnerability VCID-rex4-wk91-dqam
12
vulnerability VCID-sb4y-sjrz-hbfy
13
vulnerability VCID-sm1d-3abg-x7es
14
vulnerability VCID-su2j-hppa-kfc6
15
vulnerability VCID-t59z-41wj-5fes
16
vulnerability VCID-t8xu-6ncf-que3
17
vulnerability VCID-tgwz-nsd4-qbd1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.6.8-1%252Bdeb7u6
aliases CVE-2012-3524
risk_score 0.6
exploitability 2.0
weighted_severity 0.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xygf-djgv-67fm
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.2.24-4%252Bsqueeze3