Lucene search
K

8 matches found

OSV
OSV
added 2020/10/31 4:15 a.m.4 views

CVE-2020-15703

There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink in place results in an error message if the file exists, and no error otherwise. This way an...

3.3CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2020/10/31 4:15 a.m.27 views

CVE-2020-15703

There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink in place results in an error message if the file exists, and no error otherwise. This way an...

4CVSS4AI score0.0048EPSS
Exploits1References2
Prion
Prion
added 2020/10/31 4:15 a.m.10 views

Input validation

There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink in place results in an error message if the file exists, and no error otherwise. This way an...

2.1CVSS3.9AI score0.0048EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2020/10/31 3:45 a.m.67 views

CVE-2020-15703

CVE-2020-15703 affects aptdaemon: there is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, letting aptd read a file as root; with a symlink, an error is produced if the file exists, otherwise no error, enabling...

4CVSS3.6AI score0.0048EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVAS
added 2020/09/25 12:0 a.m.12 views

Ubuntu: Security Advisory (USN-4537-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4CVSS4.2AI score0.0048EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2020/09/24 12:52 p.m.57 views

USN-4537-1: Aptdaemon vulnerability

Vaisha Bernard discovered that Aptdaemon incorrectly handled the Locale property. A local attacker could use this issue to test for the presence of local files...

4CVSS4.9AI score0.0048EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2020/09/24 12:0 a.m.19 views

CVE-2020-15703

There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink in place results in an error message if the file exists, and no error otherwise. This way an...

4CVSS5.8AI score0.0048EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/09/24 12:0 a.m.18 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Aptdaemon vulnerability (USN-4537-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4537-1 advisory. Vaisha Bernard discovered that Aptdaemon incorrectly handled the Locale property. A local attacker could use this issue to test for the...

4CVSS5AI score0.0048EPSS
Exploits1References2
Rows per page
Query Builder