CVE-2012-2092

EUVD-2012-2098
A Security Bypass vulnerability exists in Ubuntu Cobbler before 2,2,2 in the cobbler-ubuntu-import script due to an error when verifying the GPG signature.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 25%
Affected Products (NVD)
VendorProductVersion
canonicalubuntu_cobbler
𝑥
< 2.2.2
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
cobbler
hardy
dne
lucid
dne
natty
not-affected
oneiric
ignored
precise
Fixed 2.2.2-0ubuntu32
released
quantal
Fixed 2.2.2-0ubuntu32
released
raring
Fixed 2.2.2-0ubuntu32
released
maas-provision
hardy
dne
lucid
dne
natty
dne
oneiric
dne
precise
not-affected
quantal
dne
raring
dne
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2012/04/10/14
http://www.securityfocus.com/bid/52971
https://exchange.xforce.ibmcloud.com/vulnerabilities/74789
https://security-tracker.debian.org/tracker/CVE-2012-2092
http://www.openwall.com/lists/oss-security/2012/04/10/14
http://www.securityfocus.com/bid/52971
https://exchange.xforce.ibmcloud.com/vulnerabilities/74789
https://security-tracker.debian.org/tracker/CVE-2012-2092