Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.41 views

RHEL 8 : packagekit (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - PackageKit: Information Disclosure in Transaction Interface via timing CVE-2022-0987 - PackageKit provide...

3.3CVSS7AI score0.00462EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.77 views

RHEL 6 : packagekit (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - PackageKit: Information Disclosure in Transaction Interface via timing CVE-2022-0987 - PackageKit provide...

4.7AI score0.00462EPSS
Exploits1References2
OSV
OSV
added 2022/06/28 5:15 p.m.7 views

CVE-2022-0987

A flaw was found in PackageKit in the way some of the methods exposed by the Transaction interface examines files. This issue allows a local user to measure the time the methods take to execute and know whether a file owned by root or other users exists...

3.3CVSS6.6AI score
Exploits0References1
CVE
CVE
added 2022/06/28 4:9 p.m.85 views

CVE-2022-0987

CVE-2022-0987 concerns a timing side-channel in PackageKit’s Transaction interface. Some methods expose timing information, allowing a local user to infer the existence of files owned by root or other users. Impact is information disclosure with local access; CVSS values in the records show LOW s...

3.3CVSS3.8AI score0.00263EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder