CVE-2026-40228
published 2026-04-10CVE-2026-40228: In systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is executed, if…
PriorityP415low3.3CVSS 3.1
AVLACLPRLUINSUCNILAN
EPSS
0.17%
7.0th percentile
In systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is executed, if ForwardToWall=yes is set.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| systemd | systemd | — | — |
| systemd_project | systemd | — | — |
CVSS provenance
nvdv3.13.3LOWCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
vendor_redhat2.9LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-grjh-583f-v73h: In systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is executed, if F
ghsa_unreviewed·2026-04-10
CVE-2026-40228 [LOW] CWE-669 GHSA-grjh-583f-v73h: In systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is executed, if F
In systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is executed, if ForwardToWall=yes is set.
VulDB
systemd 259 ANSI Escape Sequence resource transfer (EUVD-2026-21498)
vuldb·2026-04-10·CVSS 2.9
CVE-2026-40228 [LOW] systemd 259 ANSI Escape Sequence resource transfer (EUVD-2026-21498)
A vulnerability categorized as problematic has been discovered in systemd 259. This issue affects some unknown processing of the component ANSI Escape Sequence Handler. The manipulation results in incorrect resource transfer.
This vulnerability is known as CVE-2026-40228. Attacking locally is a requirement. No exploit is available.
Red Hat
systemd: systemd-journald: Unintended output to user terminals via logger command
vendor_redhat·2026-04-10·CVSS 2.9
CVE-2026-40228 [LOW] CWE-117 systemd: systemd-journald: Unintended output to user terminals via logger command
systemd: systemd-journald: Unintended output to user terminals via logger command
A flaw was found in systemd-journald. When the `ForwardToWall=yes` configuration is enabled, a local user who executes a `logger -p emerg` command can cause systemd-journald to send ANSI escape sequences to the terminals of other arbitrary users. This can lead to unintended output appearing on user terminals, potentially causing confusion or minor disruption.
Package: NetworkManager (Red Hat Enterprise Linux 10) - Not affected
Package: rpm-ostree (Red Hat Enterprise Linux 10) - Not affected
Package: systemd (Red Hat Enterprise Linux 10) - Not affected
Package: systemd (Red Hat Enterprise Linux 7) - Not affected
Package: NetworkManager (Red Hat Enterprise Linux 8) - Not affected
Package: systemd (Red Ha
No detection rules found.
No public exploits indexed.
2026-04-10
Published