Unrated severityNVD Advisory· Published Oct 3, 2013· Updated Jun 16, 2026
CVE-2013-4327
CVE-2013-4327
Description
systemd does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:systemd_project:systemd:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:systemd_project:systemd:*:*:*:*:*:*:*:*range: <=207
- (no CPE)
- cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
- www.debian.org/security/2013/dsa-2777nvdThird Party Advisory
- www.openwall.com/lists/oss-security/2013/09/18/6nvdMailing ListThird Party Advisory
- www.ubuntu.com/usn/USN-1961-1nvdVendor Advisory
News mentions
0No linked articles in our index yet.