Security update for firewalld
This update for firewalld fixes the following issue: - CVE-2026-4948: local unprivileged users can modify the runtime firewall state without proper authentication due to D-Bus setter mis-authorizations (bsc#1260903).
AI Analysis
Technical Summary
CVE-2026-4948 is a vulnerability in firewalld where local unprivileged users can improperly modify the runtime firewall state because of mis-authorizations in D-Bus setter methods. This allows unauthorized changes to firewall configurations at runtime. The issue was identified by the SUSE Product Security Team and fixed in a security update for firewalld packages.
Potential Impact
Local unprivileged users can alter the runtime firewall state without proper authentication, potentially affecting firewall behavior and system security. No known exploits in the wild have been reported, and the severity is assessed as medium.
Mitigation Recommendations
A security update from the SUSE Product Security Team addresses this vulnerability. Users should apply the official SUSE security update SUSE-SU-2026:2302-1 to remediate the issue. Patch status is confirmed by the vendor advisory.
Security update for firewalld
Description
This update for firewalld fixes the following issue: - CVE-2026-4948: local unprivileged users can modify the runtime firewall state without proper authentication due to D-Bus setter mis-authorizations (bsc#1260903).
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-4948 is a vulnerability in firewalld where local unprivileged users can improperly modify the runtime firewall state because of mis-authorizations in D-Bus setter methods. This allows unauthorized changes to firewall configurations at runtime. The issue was identified by the SUSE Product Security Team and fixed in a security update for firewalld packages.
Potential Impact
Local unprivileged users can alter the runtime firewall state without proper authentication, potentially affecting firewall behavior and system security. No known exploits in the wild have been reported, and the severity is assessed as medium.
Mitigation Recommendations
A security update from the SUSE Product Security Team addresses this vulnerability. Users should apply the official SUSE security update SUSE-SU-2026:2302-1 to remediate the issue. Patch status is confirmed by the vendor advisory.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- SUSE Product Security Team
- Advisory Id
- SUSE-SU-2026:2302-1
- Cve Count
- 1
- Additional Cves
- []
- Cvss Version
- null
Threat ID: 6a27e9a28dd33fbd8516e155
Added to database: 6/9/2026, 10:23:30 AM
Last enriched: 6/9/2026, 10:51:19 AM
Last updated: 6/10/2026, 6:15:12 AM
Views: 8
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.