6.1 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.2%
David Edmundson discovered that the KDE Clock KCM policykit helper did not
properly guard against untrusted input. Under certain circumstances, a
process running under the user’s session could exploit this to run
programs as the administrator.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 12.04 | noarch | kde-workspace-bin | < 4:4.8.5-0ubuntu0.4 | UNKNOWN |
Ubuntu | 12.04 | noarch | freespacenotifier | < 4:4.8.5-0ubuntu0.4 | UNKNOWN |
Ubuntu | 12.04 | noarch | kde-style-oxygen | < 4:4.8.5-0ubuntu0.4 | UNKNOWN |
Ubuntu | 12.04 | noarch | kde-window-manager | < 4:4.8.5-0ubuntu0.4 | UNKNOWN |
Ubuntu | 12.04 | noarch | kde-window-manager-active | < 4:4.8.5-0ubuntu0.4 | UNKNOWN |
Ubuntu | 12.04 | noarch | kde-window-manager-active-gles | < 4:4.8.5-0ubuntu0.4 | UNKNOWN |
Ubuntu | 12.04 | noarch | kde-window-manager-common | < 4:4.8.5-0ubuntu0.4 | UNKNOWN |
Ubuntu | 12.04 | noarch | kde-window-manager-gles | < 4:4.8.5-0ubuntu0.4 | UNKNOWN |
Ubuntu | 12.04 | noarch | kde-workspace-dbg | < 4:4.8.5-0ubuntu0.4 | UNKNOWN |
Ubuntu | 12.04 | noarch | kde-workspace-dev | < 4:4.8.5-0ubuntu0.4 | UNKNOWN |