Every CVE whose affected-product data names Udev Project Udev, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2009-1185 — CVSS 7.2 (high): udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by…
CVE-2011-0640 — CVSS 6.9 (medium): The default configuration of udev on Linux does not warn the user before enabling additional Human Interface Device (HID) functionality…
CVE-2010-4176 — CVSS 4.0 (medium): plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak permissions for the /dev/systty device file, which…
CVE-2009-1186 — CVSS 2.1 (low): Buffer overflow in the util_path_encode function in udev/lib/libudev-util.c in udev before 1.4.1 allows local users to cause a denial of…