VDB

CISA-2022-42011

CISA-2022-42011 PUBLISHED CVSS 6.5 MEDIUM

Reported by mitre · Published October 9, 2022

An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash when receiving a message where an array length is inconsistent with the size of the element type.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
n/an/an/a
n/an/a*, n/a

Timeline

  • Oct 9, 2022 CVE Published
  • Jun 9, 2025 CVE Updated
  • Apr 26, 2026 Security Advisory

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›