Privilege Escalation Vulnerability in Systemd Service from Affected Vendor
CVE-2019-3844

4.5MEDIUM

Key Information:

Vendor

[freedesktop.org]

Status
Systemd
Vendor
CVE Published:
26 April 2019

What is CVE-2019-3844?

This vulnerability arises from a flaw in the DynamicUser property of a systemd service, which allows a local attacker to gain new privileges through the execution of set-user-ID (SUID) binaries. With this exploit, the attacker could generate binaries that are owned by a transient service group, potentially leading to unauthorized access to resources in future instances when the group ID (GID) is recycled. This creates a significant risk for systems deploying the vulnerable version of systemd.

Affected Version(s)

systemd 242

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3844
x_refsource_CONFIRM
http://www.securityfocus.com/bid/108096
vdb-entryx_refsource_BID
https://security.netapp.com/advisory/ntap-20190619-0002/
x_refsource_CONFIRM

CVSS V3.1

Score:
4.5
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

CVSS V3.0

Score:
4.5
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.