CVE-2026-4105

by Fred · 13/03/2026

A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus (Desktop Bus) method. A local unprivileged user can exploit this by attempting to register a machine with a specific class value, which may leave behind a usable, attacker-controlled machine object. This allows the attacker to invoke methods on the privileged object, leading to the execution of arbitrary commands with root privileges on the host system.

More information : https://access.redhat.com/security/cve/CVE-2026-4105

CVE-2026-4105

Similar

Recent Posts

Categories

CVE-2026-4105

Share this:

Similar

Recent Posts

Categories

Tags