CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Firewalld: >> Firewalld >> 0.4.3.3 Security Vulnerabilities

CVE-2026-4948

A flaw was found in firewalld. A local unprivileged user can exploit this vulnerability by mis-authorizing two runtime D-Bus (Desktop Bus) setters, setZoneSettings2 and setPolicySettings. This mis-authorization allows the user to modify the runtime firewall state without proper authentication, leading to unauthorized changes in network security configurations.

CVSS Score

5.5

EPSS Score

0.0

Published

2026-03-27

Page 1

Vulnerabilities

Vulnerable Software

Firewalld: >> Firewalld >> 0.4.3.3 Security Vulnerabilities

Products

Pricing

Contact Us