2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
4.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
13.0%
Vaisha Bernard discovered that PackageKit incorrectly handled certain
methods. A local attacker could use this issue to learn the MIME type of
any file on the system. (CVE-2020-16121)
Sami Niemimรคki discovered that PackageKit incorrectly handled local deb
packages. A local user could possibly use this issue to install untrusted
packages, contrary to expectations. (CVE-2020-16122)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 20.04 | noarch | packagekit | <ย 1.1.13-2ubuntu1.1 | UNKNOWN |
Ubuntu | 20.04 | noarch | gir1.2-packagekitglib-1.0 | <ย 1.1.13-2ubuntu1.1 | UNKNOWN |
Ubuntu | 20.04 | noarch | gstreamer1.0-packagekit | <ย 1.1.13-2ubuntu1.1 | UNKNOWN |
Ubuntu | 20.04 | noarch | gstreamer1.0-packagekit-dbgsym | <ย 1.1.13-2ubuntu1.1 | UNKNOWN |
Ubuntu | 20.04 | noarch | libpackagekit-glib2-18 | <ย 1.1.13-2ubuntu1.1 | UNKNOWN |
Ubuntu | 20.04 | noarch | libpackagekit-glib2-18-dbgsym | <ย 1.1.13-2ubuntu1.1 | UNKNOWN |
Ubuntu | 20.04 | noarch | libpackagekit-glib2-dev | <ย 1.1.13-2ubuntu1.1 | UNKNOWN |
Ubuntu | 20.04 | noarch | packagekit-command-not-found | <ย 1.1.13-2ubuntu1.1 | UNKNOWN |
Ubuntu | 20.04 | noarch | packagekit-command-not-found-dbgsym | <ย 1.1.13-2ubuntu1.1 | UNKNOWN |
Ubuntu | 20.04 | noarch | packagekit-dbgsym | <ย 1.1.13-2ubuntu1.1 | UNKNOWN |
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
4.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
13.0%