CVE-2014-8148

EPSS 0.07%
Published 26.01.2015 15:59:00
Last modified 12.04.2025 10:46:40
Source secalert@redhat.com
Teams watchlist Login
Open Login

The default D-Bus access control rule in Midgard2 10.05.7.1 allows local users to send arbitrary method calls or signals to any process on the system bus and possibly execute arbitrary code with root privileges.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Opensuse ≫ Opensuse Version13.1

Opensuse ≫ Opensuse Version13.2

Midgard-project ≫ Midgard2 Version10.05.7.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.07%	0.221

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://lists.opensuse.org/opensuse-updates/2015-01/msg00051.html

Third Party Advisory

http://lists.opensuse.org/opensuse-updates/2015-02/msg00066.html

Third Party Advisory

http://www.openwall.com/lists/oss-security/2015/01/05/2

Third Party Advisory

Mailing List

https://nvd.nist.gov/vuln/detail/CVE-2014-8148

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-8148

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-8148

EUVD