This page aggregates publicly disclosed CVE and security risk information related to d-bus, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2006-6107 | Unspecified vulnerability in the match_rule_equal function in bus/signals.c in D-Bus before 1.0.2 allows local applications to remove match rules for other applications and cause a denial of service (lost process messages). | [email protected] | 1.7 | 0.36% | 2006-12-14 | 2026-04-23 |
| CVE-2005-0201 | D-BUS (dbus) before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket. | [email protected] | 2.1 | 0.43% | 2005-06-29 | 2026-04-16 |