CVE-2018-1106

🗓️ 09 Oct 2019 23:44:31Reported by redhat.comType

PackageKit authentication bypass vulnerability enables non-admins to install signed packages and compromise system

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 46
Debian	[SECURITY] [DSA 4207-1] packagekit security update	22 May 201812:59	–	debian
Debian	[SECURITY] [DSA 4207-1] packagekit security update	22 May 201812:59	–	debian
Fedora	[SECURITY] Fedora 27 Update: PackageKit-1.1.10-1.fc27	30 Apr 201816:38	–	fedora
Fedora	[SECURITY] Fedora 28 Update: PackageKit-1.1.10-1.fc28	27 Apr 201823:08	–	fedora
SUSE Linux	Security update for PackageKit (important)	23 Apr 201821:07	–	suse
SUSE Linux	Security update for PackageKit (important)	24 Apr 201800:06	–	suse
RedHat Linux	(RHSA-2018:1224) Moderate: PackageKit security update	24 Apr 201817:22	–	redhat
Tenable Nessus	SUSE SLED12 / SLES12 Security Update : PackageKit (SUSE-SU-2018:1047-1)	24 Apr 201800:00	–	nessus
Tenable Nessus	Fedora 28 : PackageKit (2018-a86100a264)	3 Jan 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : PackageKit (EulerOS-SA-2018-1148)	29 May 201800:00	–	nessus

Source	Link
openwall	www.openwall.com/lists/oss-security/2018/04/23/3
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Oct 2019 23:31Current

5.6Medium risk

Vulners AI Score5.6

EPSS0.0003