Vulnerability Description
A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus (Desktop Bus) method. A local unprivileged user can exploit this by attempting to register a machine with a specific class value, which may leave behind a usable, attacker-controlled machine object. This allows the attacker to invoke methods on the privileged object, leading to the execution of arbitrary commands with root privileges on the host system.
CVSS Score
MEDIUM
Related Weaknesses (CWE)
References
- https://access.redhat.com/errata/RHSA-2026:7299
- https://access.redhat.com/security/cve/CVE-2026-4105
- https://bugzilla.redhat.com/show_bug.cgi?id=2447262
- https://github.com/systemd/systemd/security/advisories/GHSA-4h6x-r8vx-3862
FAQ
What is CVE-2026-4105?
CVE-2026-4105 is a vulnerability with a CVSS score of 6.7 (MEDIUM). A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus (Desktop ...
How severe is CVE-2026-4105?
CVE-2026-4105 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-4105?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.