{"containers": {"cna": {"affected": [{"product": "packagekit", "vendor": "PackageKit", "versions": [{"lessThan": "1.1.13-2ubuntu1.1", "status": "affected", "version": "1.1.13-2ubuntu", "versionType": "custom"}, {"lessThan": "1.1.9-1ubuntu2.18.04.6", "status": "affected", "version": "1.1.9-1ubuntu", "versionType": "custom"}, {"lessThan": "0.8.17-4ubuntu6~gcc5.4ubuntu1.5", "status": "affected", "version": "0.8.17-4ubuntu", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Sami Niemim\u00e4ki and Esko J\u00e4rnfors"}], "datePublic": "2020-06-12T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is based on repository trust and not on the contents of individual files. On sites with configured PolicyKit rules this may allow users to install malicious packages."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2020-11-07T04:10:19.000Z", "orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "shortName": "canonical"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://bugs.launchpad.net/ubuntu/+source/packagekit/+bug/1882098"}], "source": {"advisory": "https://ubuntu.com/security/notices/USN-4538-1", "defect": ["https://bugs.launchpad.net/ubuntu/+source/packagekit/+bug/1882098"], "discovery": "EXTERNAL"}, "title": "Packagekit's apt backend lets user install untrusted local packages", "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@ubuntu.com", "DATE_PUBLIC": "2020-06-12T00:00:00.000Z", "ID": "CVE-2020-16122", "STATE": "PUBLIC", "TITLE": "Packagekit's apt backend lets user install untrusted local packages"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "packagekit", "version": {"version_data": [{"version_affected": "<", "version_name": "1.1.13-2ubuntu", "version_value": "1.1.13-2ubuntu1.1"}, {"version_affected": "<", "version_name": "1.1.9-1ubuntu", "version_value": "1.1.9-1ubuntu2.18.04.6"}, {"version_affected": "<", "version_name": "0.8.17-4ubuntu", "version_value": "0.8.17-4ubuntu6~gcc5.4ubuntu1.5"}]}}]}, "vendor_name": "PackageKit"}]}}, "credit": [{"lang": "eng", "value": "Sami Niemim\u00e4ki and Esko J\u00e4rnfors"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is based on repository trust and not on the contents of individual files. On sites with configured PolicyKit rules this may allow users to install malicious packages."}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-269 Improper Privilege Management"}]}]}, "references": {"reference_data": [{"name": "https://bugs.launchpad.net/ubuntu/+source/packagekit/+bug/1882098", "refsource": "MISC", "url": "https://bugs.launchpad.net/ubuntu/+source/packagekit/+bug/1882098"}]}, "source": {"advisory": "https://ubuntu.com/security/notices/USN-4538-1", "defect": ["https://bugs.launchpad.net/ubuntu/+source/packagekit/+bug/1882098"], "discovery": "EXTERNAL"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T13:37:53.352Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://bugs.launchpad.net/ubuntu/+source/packagekit/+bug/1882098"}]}]}, "cveMetadata": {"assignerOrgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "assignerShortName": "canonical", "cveId": "CVE-2020-16122", "datePublished": "2020-11-07T04:10:19.889Z", "dateReserved": "2020-07-29T00:00:00.000Z", "dateUpdated": "2024-09-16T16:13:16.633Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:packagekit_project:packagekit:-:*:*:*:*:*:*:*", "matchCriteriaId": "936ABEE2-1ADB-44EB-AF92-818E0CE9B893", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*", "matchCriteriaId": "902B8056-9E37-443B-8905-8AA93E2447FB", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is based on repository trust and not on the contents of individual files. On sites with configured PolicyKit rules this may allow users to install malicious packages."}, {"lang": "es", "value": "El backend apt de PackageKit trat\u00f3 err\u00f3neamente a todas las debs locales como confiables.&#xa0;El modelo de seguridad de apt se basa en la confianza del repositorio y no en el contenido de archivos individuales.&#xa0;En sitios con reglas PolicyKit configuradas, esto puede permitir a los usuarios instalar paquetes maliciosos"}], "id": "CVE-2020-16122", "lastModified": "2024-11-21T05:06:48.347", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.5, "impactScore": 6.0, "source": "security@ubuntu.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-11-07T04:15:12.130", "references": [{"source": "security@ubuntu.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugs.launchpad.net/ubuntu/+source/packagekit/+bug/1882098"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugs.launchpad.net/ubuntu/+source/packagekit/+bug/1882098"}], "sourceIdentifier": "security@ubuntu.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "security@ubuntu.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-345"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "PackageKit: local user could possibly use this issue to install untrusted packages", "id": "1884562", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1884562"}, "csaw": false, "cvss3": {"cvss3_base_score": "4.7", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N", "status": "draft"}, "details": ["PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is based on repository trust and not on the contents of individual files. On sites with configured PolicyKit rules this may allow users to install malicious packages."], "name": "CVE-2020-16122", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "PackageKit", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "PackageKit", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "PackageKit", "product_name": "Red Hat Enterprise Linux 8"}], "public_date": "2020-09-24T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2020-16122\nhttps://nvd.nist.gov/vuln/detail/CVE-2020-16122\nhttps://bugs.launchpad.net/ubuntu/+source/packagekit/+bug/1882098"], "statement": "PackageKit as shipped with Red Hat Enterprise Linux 6, 7, and 8 is not affected by this flaw because it uses a different backend, and the flaw is specific to the aptcc backend used for debian-based systems.", "threat_severity": "Moderate"}

{}