Django REST framework
Api Root
Vulnerability List
Vulnerability Instance
Format
json
api
admin
Vulnerability Instance
Lookup for vulnerabilities affecting packages.
Vulnerability_id
VCID-8tw5-wrd1-dbdy
Summary
udisks: Missing Authorization Check Allows Unprivileged Users to Back Up LUKS Headers via udisks D-Bus API
Aliases
0
alias
CVE-2026-26104
Fixed_packages
0
url
pkg:deb/debian/udisks2@0?distro=trixie
purl
pkg:deb/debian/udisks2@0?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/udisks2@0%3Fdistro=trixie
1
url
pkg:deb/debian/udisks2@2.9.2-2%2Bdeb11u1?distro=trixie
purl
pkg:deb/debian/udisks2@2.9.2-2%2Bdeb11u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/udisks2@2.9.2-2%252Bdeb11u1%3Fdistro=trixie
2
url
pkg:deb/debian/udisks2@2.9.4-4%2Bdeb12u2?distro=trixie
purl
pkg:deb/debian/udisks2@2.9.4-4%2Bdeb12u2?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/udisks2@2.9.4-4%252Bdeb12u2%3Fdistro=trixie
3
url
pkg:deb/debian/udisks2@2.10.1-12.1%2Bdeb13u1?distro=trixie
purl
pkg:deb/debian/udisks2@2.10.1-12.1%2Bdeb13u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/udisks2@2.10.1-12.1%252Bdeb13u1%3Fdistro=trixie
4
url
pkg:deb/debian/udisks2@2.11.1-1?distro=trixie
purl
pkg:deb/debian/udisks2@2.11.1-1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/udisks2@2.11.1-1%3Fdistro=trixie
Affected_packages
0
url
pkg:rpm/redhat/udisks2@2.10.90-5.el10_0?arch=2
purl
pkg:rpm/redhat/udisks2@2.10.90-5.el10_0?arch=2
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-8tw5-wrd1-dbdy
1
vulnerability
VCID-e4hg-tyut-j7bf
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/udisks2@2.10.90-5.el10_0%3Farch=2
1
url
pkg:rpm/redhat/udisks2@2.10.90-6.el10_1?arch=1
purl
pkg:rpm/redhat/udisks2@2.10.90-6.el10_1?arch=1
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-8tw5-wrd1-dbdy
1
vulnerability
VCID-e4hg-tyut-j7bf
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/udisks2@2.10.90-6.el10_1%3Farch=1
References
0
reference_url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-26104.json
reference_id
reference_type
scores
0
value
5.5
scoring_system
cvssv3
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-26104.json
1
reference_url
https://api.first.org/data/v1/epss?cve=CVE-2026-26104
reference_id
reference_type
scores
0
value
0.00011
scoring_system
epss
scoring_elements
0.01494
published_at
2026-06-05T12:55:00Z
url
https://api.first.org/data/v1/epss?cve=CVE-2026-26104
2
reference_url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value
5.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url
https://bugzilla.redhat.com/show_bug.cgi?id=2433717
reference_id
2433717
reference_type
scores
0
value
5.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-25T20:49:09Z/
url
https://bugzilla.redhat.com/show_bug.cgi?id=2433717
4
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1
reference_id
cpe:/o:redhat:enterprise_linux:10.1
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1
5
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id
cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
6
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id
cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
7
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
reference_id
cpe:/o:redhat:enterprise_linux:8
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
8
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id
cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
9
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0
reference_id
cpe:/o:redhat:enterprise_linux_eus:10.0
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0
10
reference_url
https://access.redhat.com/security/cve/CVE-2026-26104
reference_id
CVE-2026-26104
reference_type
scores
0
value
5.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-25T20:49:09Z/
url
https://access.redhat.com/security/cve/CVE-2026-26104
11
reference_url
https://github.com/storaged-project/udisks/security/advisories/GHSA-fcvx-497g-6xmw
reference_id
GHSA-fcvx-497g-6xmw
reference_type
scores
0
value
5.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-25T20:49:09Z/
url
https://github.com/storaged-project/udisks/security/advisories/GHSA-fcvx-497g-6xmw
12
reference_url
https://access.redhat.com/errata/RHSA-2026:3476
reference_id
RHSA-2026:3476
reference_type
scores
0
value
5.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-25T20:49:09Z/
url
https://access.redhat.com/errata/RHSA-2026:3476
13
reference_url
https://access.redhat.com/errata/RHSA-2026:5831
reference_id
RHSA-2026:5831
reference_type
scores
0
value
5.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-25T20:49:09Z/
url
https://access.redhat.com/errata/RHSA-2026:5831
Weaknesses
0
cwe_id
862
name
Missing Authorization
description
The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
Exploits
Severity_range_score
5.5 - 5.5
Exploitability
0.5
Weighted_severity
5.0
Risk_score
2.5
Resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-8tw5-wrd1-dbdy
×
Create
None
×
Edit
None