CVE-2019-12749

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 (and in some, less common, uses of dbus-daemon), allows cookie spoofing because of symlink mishandling in the reference implementation of DBUS_COOKIE_SHA1 in the libdbus library. (This only affects the DBUS_COOKIE_SHA1 authentication mechanism.) A malicious client with write access to its own home directory could manipulate a ~/.dbus-keyrings symlink to cause a DBusServer with a different uid to read and write in unintended locations. In the worst case, this could result in the DBusServer reusing a cookie that is known to the malicious client, and treating that cookie as evidence that a subsequent client connection came from an attacker-chosen uid, allowing authentication bypass.

References

http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00059.html

http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00092.html

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00026.html

http://www.openwall.com/lists/oss-security/2019/06/11/2

http://www.securityfocus.com/bid/108751

https://access.redhat.com/errata/RHSA-2019:1726

https://access.redhat.com/errata/RHSA-2019:2868

https://access.redhat.com/errata/RHSA-2019:2870

https://access.redhat.com/errata/RHSA-2019:3707

https://lists.debian.org/debian-lts-announce/2019/06/msg00005.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/V2CQF37O73VH2JDVX2ILX2KD2KLXLQOU/

https://seclists.org/bugtraq/2019/Jun/16

https://security.gentoo.org/glsa/201909-08

https://usn.ubuntu.com/4015-1/

https://usn.ubuntu.com/4015-2/

https://www.debian.org/security/2019/dsa-4462

https://www.openwall.com/lists/oss-security/2019/06/11/2

Details

Source: MITRE

Published: 2019-06-11

Updated: 2020-08-24

Type: CWE-59

Risk Information

CVSS v2

Base Score: 3.6

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:N

Impact Score: 4.9

Exploitability Score: 3.9

Severity: LOW

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Impact Score: 5.2

Exploitability Score: 1.8

Severity: HIGH

Tenable Plugins

View all (39 total)

IDNameProductFamilySeverity
150575SUSE SLES11 Security Update : dbus-1 (SUSE-SU-2019:14111-1)NessusSuSE Local Security Checks
high
147378NewStart CGSL CORE 5.04 / MAIN 5.04 : dbus Vulnerability (NS-SA-2021-0017)NessusNewStart CGSL Local Security Checks
high
145574CentOS 8 : dbus (CESA-2019:3707)NessusCentOS Local Security Checks
high
141677Scientific Linux Security Update : dbus on SL7.x x86_64 (20201001)NessusScientific Linux Local Security Checks
high
141607CentOS 7 : dbus (CESA-2020:4032)NessusCentOS Local Security Checks
high
141226Oracle Linux 7 : dbus (ELSA-2020-4032)NessusOracle Linux Local Security Checks
high
141019RHEL 7 : dbus (RHSA-2020:4032)NessusRed Hat Local Security Checks
high
138273SUSE SLES12 Security Update : dbus-1 (SUSE-SU-2020:1672-1)NessusSuSE Local Security Checks
high
134309NewStart CGSL MAIN 4.05 : dbus Vulnerability (NS-SA-2020-0016)NessusNewStart CGSL Local Security Checks
high
132980Photon OS 1.0: Dbus PHSA-2020-1.0-0264NessusPhotonOS Local Security Checks
high
130574RHEL 8 : dbus (RHSA-2019:3707)NessusRed Hat Local Security Checks
high
130422SUSE SLED12 / SLES12 Security Update : dbus-1 (SUSE-SU-2019:2820-1)NessusSuSE Local Security Checks
high
129275RHEL 6 : dbus (RHSA-2019:2870)NessusRed Hat Local Security Checks
high
129273RHEL 6 : dbus (RHSA-2019:2868)NessusRed Hat Local Security Checks
high
129215EulerOS 2.0 SP3 : dbus (EulerOS-SA-2019-2022)NessusHuawei Local Security Checks
high
128693NewStart CGSL MAIN 4.06 : dbus Vulnerability (NS-SA-2019-0173)NessusNewStart CGSL Local Security Checks
high
128597GLSA-201909-08 : D-Bus: Authentication bypassNessusGentoo Local Security Checks
high
127074Amazon Linux AMI : dbus (ALAS-2019-1246)NessusAmazon Linux Local Security Checks
high
127004EulerOS 2.0 SP8 : dbus (EulerOS-SA-2019-1767)NessusHuawei Local Security Checks
high
126891openSUSE Security Update : dbus-1 (openSUSE-2019-1750)NessusSuSE Local Security Checks
high
126854EulerOS 2.0 SP2 : dbus (EulerOS-SA-2019-1727)NessusHuawei Local Security Checks
high
126700Virtuozzo 6 : dbus / dbus-devel / dbus-doc / dbus-libs / etc (VZLSA-2019-1726)NessusVirtuozzo Local Security Checks
high
126669OracleVM 3.3 / 3.4 : dbus (OVMSA-2019-0034)NessusOracleVM Local Security Checks
high
126649CentOS 6 : dbus (CESA-2019:1726)NessusCentOS Local Security Checks
high
126613Scientific Linux Security Update : dbus on SL6.x i386/x86_64 (20190710)NessusScientific Linux Local Security Checks
high
126612RHEL 6 : dbus (RHSA-2019:1726)NessusRed Hat Local Security Checks
high
126609Oracle Linux 6 : dbus (ELSA-2019-1726)NessusOracle Linux Local Security Checks
high
126548EulerOS Virtualization for ARM 64 3.0.2.0 : dbus (EulerOS-SA-2019-1706)NessusHuawei Local Security Checks
high
126415EulerOS 2.0 SP5 : dbus (EulerOS-SA-2019-1673)NessusHuawei Local Security Checks
high
126371openSUSE Security Update : dbus-1 (openSUSE-2019-1671)NessusSuSE Local Security Checks
high
126229openSUSE Security Update : dbus-1 (openSUSE-2019-1604)NessusSuSE Local Security Checks
high
126153SUSE SLED15 / SLES15 Security Update : dbus-1 (SUSE-SU-2019:1597-1)NessusSuSE Local Security Checks
high
126151SUSE SLED15 / SLES15 Security Update : dbus-1 (SUSE-SU-2019:1595-1)NessusSuSE Local Security Checks
high
126149SUSE SLES12 Security Update : dbus-1 (SUSE-SU-2019:1591-1)NessusSuSE Local Security Checks
high
126018Fedora 30 : 1:dbus (2019-d5ded5326b)NessusFedora Local Security Checks
high
125985SUSE SLED15 / SLES15 Security Update : dbus-1 (SUSE-SU-2019:1521-1)NessusSuSE Local Security Checks
high
125926Debian DLA-1818-1 : dbus security updateNessusDebian Local Security Checks
high
125905Debian DSA-4462-1 : dbus - security updateNessusDebian Local Security Checks
high
125852Ubuntu 16.04 LTS / 18.04 LTS / 18.10 / 19.04 : DBus vulnerability (USN-4015-1)NessusUbuntu Local Security Checks
high