Lucene search
K

479 matches found

OSV
OSV
added 2022/01/25 12:0 a.m.49 views

DSA-5059-1 policykit-1 - security update

Bulletin has no description...

7.8CVSS7.3AI score0.94921EPSS
Exploits151
OSV
OSV
added 2022/01/25 12:0 a.m.41 views

DLA-2899-1 policykit-1 - security update

Bulletin has no description...

7.8CVSS7.3AI score0.94921EPSS
Exploits151
Debian
Debian
added 2022/01/21 3:10 p.m.17 views

[SECURITY] [DSA 5052-1] usbview security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5052-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 21, 2022 https://www.debian.org/security/faq -...

7.8CVSS7.5AI score0.00521EPSS
Exploits1
CNNVD
CNNVD
added 2022/01/21 12:0 a.m.4 views

USBView 访问控制错误漏洞

USBView is a USB viewer for Linux. An access control error vulnerability exists in USBView that stems from certain Polkit settings in the product that disable privilege authentication. An attacker can execute arbitrary code as root with the -gtk-module option. The following products and versions...

7.8CVSS7.7AI score0.00521EPSS
Exploits1References11
Veracode
Veracode
added 2021/06/04 10:46 p.m.44 views

Denial Of Service (DoS)

policykit-1 is vulnerable to denial of service. The vulnerability exists due to the system unable to get a unique uid and pid of the process and it cannot verify the privileges of the requesting process...

7.8CVSS4.1AI score0.22193EPSS
Exploits37References5Affected Software6
OpenVAS
OpenVAS
added 2021/06/04 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-4980-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.3AI score0.22193EPSS
Exploits37References4
Ubuntu
Ubuntu
added 2021/06/03 10:51 a.m.270 views

USN-4980-1: polkit vulnerability

Kevin Backhouse discovered that polkit incorrectly handled errors in the polkitsystembusnamegetcredssync function. A local attacker could possibly use this issue to escalate privileges...

7.8CVSS7.7AI score0.22193EPSS
Exploits37
OSV
OSV
added 2021/06/03 10:51 a.m.2 views

USN-4980-1 policykit-1 vulnerability

Kevin Backhouse discovered that polkit incorrectly handled errors in the polkitsystembusnamegetcredssync function. A local attacker could possibly use this issue to escalate privileges...

7.8CVSS7.3AI score0.22193EPSS
Exploits37References2
Veracode
Veracode
added 2020/12/11 9:26 a.m.28 views

Denial Of Service (DoS)

aptdaemon is vulnerable to denial of service DoS. The vulnerability exists as policykit checks are too late...

5.5CVSS2.7AI score0.00288EPSS
Exploits0References3Affected Software5
OSV
OSV
added 2020/12/09 4:15 a.m.3 views

CVE-2020-27349

Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...

5.5CVSS6.1AI score0.00288EPSS
Exploits0References2
NVD
NVD
added 2020/12/09 4:15 a.m.26 views

CVE-2020-27349

Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...

5.5CVSS5.4AI score0.00288EPSS
Exploits0References2
Prion
Prion
added 2020/12/09 4:15 a.m.23 views

Code injection

Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...

2.1CVSS5.4AI score0.00288EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/12/09 3:35 a.m.80 views

CVE-2020-27349

Apt-daemon (aptdaemon) vulnerability CVE-2020-27349 affects Ubuntu runtimes and is described as: Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges, with affected package versions listed as 1.1.1+bzr982-0ubuntu14.5 up to 1.1.1+bzr982-0...

5.5CVSS5.3AI score0.00288EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/12/09 3:35 a.m.45 views

CVE-2020-27349 aptdaemon performed policykit permissions checks too late

Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...

5.4AI score0.00288EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.48 views

SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3503-1)

The SUSE Linux Enterprise 12 SP3 kernel was updated to receive various security and bug fixes. The following security bugs were fixed : CVE-2020-25705: A flaw in the way reply ICMP packets are limited in was found that allowed to quickly scan open UDP ports. This flaw allowed an off-path remote...

7.8CVSS7.5AI score0.06692EPSS
Exploits8References85
UbuntuCve
UbuntuCve
added 2020/12/08 12:0 a.m.21 views

CVE-2020-27349

Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...

5.5CVSS6.1AI score0.00288EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/12/08 12:0 a.m.6 views

Aptdaemon Security Vulnerabilities

Aptdaemon is a code library for pypi for individual developers. The library functions allow package management tasks to be performed in a DBus-controlled background process. A security vulnerability exists in Aptdaemon, which can be exploited by an attacker to trigger a denial of service via a...

5.5CVSS6.1AI score0.00288EPSS
Exploits0References6
OSV
OSV
added 2020/12/08 12:0 a.m.1 views

UBUNTU-CVE-2020-27349

Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...

5.5CVSS5.8AI score0.00288EPSS
Exploits0References3
Veracode
Veracode
added 2020/12/06 3:29 a.m.24 views

Privilege Escalation

PackageKit is vulnerable to privilege escalation attacks. A local authenticated attacker could install malicious packages using a configured PolicyKit...

8.2CVSS3.4AI score0.00335EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2020/11/07 4:15 a.m.26 views

CVE-2020-16122

PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is based on repository trust and not on the contents of individual files. On sites with configured PolicyKit rules this may allow users to install malicious packages...

8.2CVSS8AI score0.00335EPSS
Exploits0References1
Rows per page
Query Builder