Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-1185

CWE-346 CWE-862 — Missing Authorization CWE-20 — Improper Input Validation9 documents7 sources

Severity

7.2HIGH

EPSS

89.5%

top 0.45%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Juniper Ctpview Udev Project Udev Canonical Ubuntu Linux +6 more

Timeline

PublishedApr 17

Latest updateMay 2

Description

udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages6 packages

▶NVDudev_project/udev< 141

▶NVDjuniper/ctpview< 7.1+2

▶NVDopensuse/opensuse10.3, 11.0, 11.1+2

▶NVDsuse/linux_enterprise_server10, 11+1

▶NVDsuse/linux_enterprise_desktop10, 11+1

Also affects: Debian Linux 4.0, 5.0, Fedora 10, 9, Ubuntu Linux 6.06, 7.10, 8.04, 8.10

Patches

Patch: bugzilla.redhat.com ↗Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-3cx7-86h6-xwmp: udev before 1↗2022-05-02

▶

CVEList

CVE-2009-1185: udev before 1↗2009-04-17

▶

💥Exploits & PoCs

Exploit-DB

Linux Kernel UDEV < 1.4.1 - 'Netlink' Local Privilege Escalation (Metasploit)↗2012-10-10

▶

Exploit-DB

Linux Kernel 2.6 (Gentoo / Ubuntu 8.10/9.04) UDEV < 1.4.1 - Local Privilege Escalation (2)↗2009-04-30

▶

Exploit-DB

Linux Kernel 2.6 (Debian 4.0 / Ubuntu / Gentoo) UDEV < 1.4.1 - Local Privilege Escalation (1)↗2009-04-20

▶

📋Vendor Advisories

Red Hat

udev: Uncheck origin of NETLINK messages↗2009-04-15

▶

Ubuntu

udev vulnerabilities↗2009-04-15

▶

💬Community

Bugzilla

CVE-2009-1185 udev: Uncheck origin of NETLINK messages↗2009-04-09

▶