Vulnerability Details CVE-2019-15718
In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c (as used by systemd-resolved to connect to the system D-Bus instance), calls sd_bus_set_trusted, which disables access controls for incoming D-Bus messages. An unprivileged user can exploit this by executing D-Bus methods that should be restricted to privileged users, in order to change the system's DNS resolver settings.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.7%
CVSS Severity
CVSS v3 Score 4.4
CVSS v2 Score 3.6
References
- http://www.openwall.com/lists/oss-security/2019/09/03/1
- https://access.redhat.com/errata/RHSA-2019:3592
- https://access.redhat.com/errata/RHSA-2019:3941
- https://bugzilla.redhat.com/show_bug.cgi?id=1746057
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BRE5IS24XTF5WNZGH2L7GSQJKARBOEGL/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HIKGKXZ5OEGOEYURHLJHEMFYNLEGAW5B/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2WNHRJW4XI6H5YMDG4BUFGPAXWUMUVG/
- http://www.openwall.com/lists/oss-security/2019/09/03/1
- https://access.redhat.com/errata/RHSA-2019:3592
- https://access.redhat.com/errata/RHSA-2019:3941
- https://bugzilla.redhat.com/show_bug.cgi?id=1746057
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BRE5IS24XTF5WNZGH2L7GSQJKARBOEGL/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HIKGKXZ5OEGOEYURHLJHEMFYNLEGAW5B/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2WNHRJW4XI6H5YMDG4BUFGPAXWUMUVG/
Products affected by CVE-2019-15718
-
cpe:2.3:a:redhat:openshift_container_platform:4.1
-
cpe:2.3:a:systemd_project:systemd:240
-
cpe:2.3:o:fedoraproject:fedora:29
-
cpe:2.3:o:fedoraproject:fedora:30
-
cpe:2.3:o:fedoraproject:fedora:31
-
cpe:2.3:o:redhat:enterprise_linux:8.0
-
cpe:2.3:o:redhat:enterprise_linux_eus:8.1
-
cpe:2.3:o:redhat:enterprise_linux_eus:8.2
-
cpe:2.3:o:redhat:enterprise_linux_eus:8.4
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_8_s390x:*
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.1
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.2
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.4
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus_s390x:8.1
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus_s390x:8.2
-
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0
-
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.1
-
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.2
-
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.4
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4
-
Redhat » Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions » Version: 8.1cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.1
-
Redhat » Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions » Version: 8.2cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.2
-
Redhat » Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions » Version: 8.4cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.4
-
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2
-
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4
-
cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.1
-
cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.2
-
cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.4