CVE-2018-1106

EUVD-2018-11753
An authentication bypass flaw has been found in PackageKit before 1.1.10 that allows users without administrator privileges to install signed packages. A local attacker can use this vulnerability to install vulnerable packages to further compromise a system.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 7%
Affected Products (NVD)
VendorProductVersion
packagekit_projectpackagekit
𝑥
< 1.1.10
redhatenterprise_linux_desktop
7.0
redhatenterprise_linux_server
7.0
redhatenterprise_linux_server_aus
7.6
redhatenterprise_linux_server_eus
7.5
redhatenterprise_linux_server_eus
7.6
redhatenterprise_linux_server_tus
7.6
redhatenterprise_linux_workstation
7.0
canonicalubuntu_linux
17.10
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
packagekit
bookworm
1.2.6-5
fixed
bullseye
1.2.2-2
fixed
jessie
not-affected
sid
1.3.0-1
fixed
trixie
1.3.0-1
fixed
wheezy
not-affected
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
packagekit
artful
Fixed 1.1.7-1ubuntu0.1
released
trusty
dne
xenial
not-affected
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2018/04/23/3
https://access.redhat.com/errata/RHSA-2018:1224
https://bugzilla.redhat.com/show_bug.cgi?id=1565992
https://usn.ubuntu.com/3634-1/
https://www.debian.org/security/2018/dsa-4207
http://www.openwall.com/lists/oss-security/2018/04/23/3
https://access.redhat.com/errata/RHSA-2018:1224
https://bugzilla.redhat.com/show_bug.cgi?id=1565992
https://usn.ubuntu.com/3634-1/
https://www.debian.org/security/2018/dsa-4207