Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistDebianCVELIST:CVE-2012-0214
HistoryApr 15, 2014 - 6:00 p.m.

CVE-2012-0214

2014-04-1518:00:00
debian
www.cve.org

6.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

35.4%

JSON

The pkgAcqMetaClearSig::Failed method in apt-pkg/acquire-item.cc in Advanced Package Tool (APT) 0.8.11 through 0.8.15.10 and 0.8.16 before 0.8.16~exp13, when updating from repositories that use InRelease files, allows man-in-the-middle attackers to install arbitrary packages by preventing a user from downloading the new InRelease file, which leaves the original InRelease file active and makes it more difficult to detect that the Packages file is modified and unsigned.

Related

ubuntucve 1
cve 1
nvd 1
openvas 2
ubuntu 1
debiancve 1
securityvulns 2
prion 1
nessus 1
ubuntucve
ubuntucve
CVE-2012-0214
2012-03-06 00:00:00
cve
cve
CVE-2012-0214
2014-04-15 23:55:08
nvd
nvd
CVE-2012-0214
2014-04-15 23:55:08
openvas
openvas
Ubuntu Update for apt USN-1385-1
2012-03-07 00:00:00
Ubuntu: Security Advisory (USN-1385-1)
2012-03-07 00:00:00
ubuntu
ubuntu
APT vulnerability
2012-03-06 00:00:00
debiancve
debiancve
CVE-2012-0214
2014-04-15 23:55:08
securityvulns
securityvulns
[USN-1385-1] APT vulnerability
2012-03-10 00:00:00
apt protection bypass
2013-03-24 00:00:00
prion
prion
Code injection
2014-04-15 23:55:00
nessus
nessus
Ubuntu 11.04 / 11.10 : apt vulnerability (USN-1385-1)
2012-03-07 00:00:00

6.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

35.4%

JSON
Related for CVELIST:CVE-2012-0214
ubuntucve1cve1nvd1openvas2ubuntu1debiancve1securityvulns2prion1nessus1