Heap Use-After-Free Vulnerability in systemd Affects Multiple Versions
CVE-2020-1712
7.8HIGH
What is CVE-2020-1712?
A vulnerability in systemd allows local unprivileged attackers to exploit a heap use-after-free condition while processing asynchronous Polkit queries via dbus messages. By sending specially crafted dbus messages, attackers can potentially crash systemd services or escalate their privileges, enabling them to execute arbitrary code.
Affected Version(s)
systemd before v245-rc1