CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
15.9%
Race condition in Apport before 2.17.2-0ubuntu1.1 as packaged in Ubuntu
15.04, before 2.14.70ubuntu8.5 as packaged in Ubuntu 14.10, before
2.14.1-0ubuntu3.11 as packaged in Ubuntu 14.04 LTS, and before
2.0.1-0ubuntu17.9 as packaged in Ubuntu 12.04 LTS allow local users to
write to arbitrary files and gain root privileges.
Author | Note |
---|---|
mdeslaur | 2609-1 |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 12.04 | noarch | apport | < 2.0.1-0ubuntu17.9 | UNKNOWN |
ubuntu | 14.04 | noarch | apport | < 2.14.1-0ubuntu3.11 | UNKNOWN |
ubuntu | 14.10 | noarch | apport | < 2.14.7-0ubuntu8.5 | UNKNOWN |
ubuntu | 15.04 | noarch | apport | < 2.17.2-0ubuntu1.1 | UNKNOWN |
ubuntu | 15.10 | noarch | apport | < 2.17.3-0ubuntu1 | UNKNOWN |
ubuntu | 16.04 | noarch | apport | < 2.17.3-0ubuntu1 | UNKNOWN |
ubuntu | 16.10 | noarch | apport | < 2.17.3-0ubuntu1 | UNKNOWN |
ubuntu | 17.04 | noarch | apport | < 2.17.3-0ubuntu1 | UNKNOWN |
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
15.9%