CVE-2019-15718Improper Authorization in Project Systemd

CWE-285Improper Authorization9 documents8 sources
Severity
4.4MEDIUMNVD
EPSS
0.1%
top 71.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
13
Systemd Project SystemdFedoraproject FedoraRedhat Enterprise Linux+10 more
Timeline
PublishedSep 4
Latest updateMay 24

Description

In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c (as used by systemd-resolved to connect to the system D-Bus instance), calls sd_bus_set_trusted, which disables access controls for incoming D-Bus messages. An unprivileged user can exploit this by executing D-Bus methods that should be restricted to privileged users, in order to change the system's DNS resolver settings.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:NExploitability: 1.8 | Impact: 2.5

Affected Packages2 packages

Debiansystemd_project/systemd< 242-7+3

Also affects: Fedora 29, 30, 31, Enterprise Linux 8.0, 8.1, 8.2, 8.4, Openshift Container Platform 4.1

Patches

Patch: access.redhat.comPatch: bugzilla.redhat.comPatch: access.redhat.com

🔴Vulnerability Details

3
GHSA
GHSA-p39j-chr3-gjhq: In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util2022-05-24
OSV
CVE-2019-15718: In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util2019-09-04
CVEList
CVE-2019-15718: In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util2019-09-04

📋Vendor Advisories

3
Ubuntu
systemd vulnerability2019-09-03
Red Hat
systemd: systemd-resolved allows unprivileged users to configure DNS2019-09-03
Debian
CVE-2019-15718: systemd - In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c...2019

💬Community

2
Bugzilla
CVE-2019-15718 systemd: systemd-resolved allows unprivileged users to configure DNS [fedora-all]2019-09-04
Bugzilla
CVE-2019-15718 systemd: systemd-resolved allows unprivileged users to configure DNS2019-08-27
CVE-2019-15718 — Improper Authorization | cvebase