CVE-2012-2092

A Security Bypass vulnerability exists in Ubuntu Cobbler before 2,2,2 in the cobbler-ubuntu-import script due to an error when verifying the GPG signature.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 27%
VendorProductVersion
canonicalubuntu_cobbler
𝑥
< 2.2.2
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
cobbler
raring
Fixed 2.2.2-0ubuntu32
released
quantal
Fixed 2.2.2-0ubuntu32
released
precise
Fixed 2.2.2-0ubuntu32
released
oneiric
ignored
natty
not-affected
lucid
dne
hardy
dne
maas-provision
raring
dne
quantal
dne
precise
not-affected
oneiric
dne
natty
dne
lucid
dne
hardy
dne
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2012/04/10/14
http://www.securityfocus.com/bid/52971
https://exchange.xforce.ibmcloud.com/vulnerabilities/74789
https://security-tracker.debian.org/tracker/CVE-2012-2092
http://www.openwall.com/lists/oss-security/2012/04/10/14
http://www.securityfocus.com/bid/52971
https://exchange.xforce.ibmcloud.com/vulnerabilities/74789
https://security-tracker.debian.org/tracker/CVE-2012-2092