cbcvebase.
CVE-2010-1172
published 2010-08-20

CVE-2010-1172: DBus-GLib 0.73 disregards the access flag of exported GObject properties, which allows local users to bypass intended access restrictions and possibly cause a…

PriorityP49low3.6CVSS 2.0
AVLACLAuNCNIPAP
EPSS
0.40%
31.5th percentile
DBus-GLib 0.73 disregards the access flag of exported GObject properties, which allows local users to bypass intended access restrictions and possibly cause a denial of service by modifying properties, as demonstrated by properties of the (1) DeviceKit-Power, (2) NetworkManager, and (3) ModemManager services.

Affected

6 ranges
VendorProductVersion rangeFixed in
debiandbus-glib< dbus-glib 0.88-1 (bookworm)dbus-glib 0.88-1 (bookworm)
freedesktopdbus-glib
freedesktopdbus-glib>= 0 < 0.88-10.88-1
freedesktopdbus-glib>= 0 < 0.88-10.88-1
freedesktopdbus-glib>= 0 < 0.88-10.88-1
freedesktopdbus-glib>= 0 < 0.88-10.88-1

CVSS provenance

nvdv2.03.6LOWAV:L/AC:L/Au:N/C:N/I:P/A:P
osv3.6LOW
vendor_debian3.6LOW
vendor_redhat3.6LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.