Description
A vulnerability has been found in PackageKit up to 1.3.5. Affected is the function g_file_test of the file src/pk-transaction.c of the component API. Such manipulation of the argument frontend-socket leads to improper authorization. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
Published: 2026-06-01
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability appears in PackageKit versions up to 1.3.5, where the API function g_file_test in src/pk-transaction.c processes a frontend‑socket argument without performing proper authorization checks. Because the flaw resides in the handling of the frontend‑socket, an attacker who can reach that socket can supply a crafted argument, causing g_file_test to bypass standard permission validation. The flaw is classified as improper authorization (CWE‑266, CWE‑285) and can be exploited from a remote host.

Affected Systems

Any installation of PackageKit that uses a version 1.3.5 or earlier is affected. Since PackageKit is an open‑source project packaged by many Linux distributions, the vulnerability applies across all such distributions. The impact is not limited to a specific vendor; any system that exposes the PackageKit daemon over a network socket is potentially vulnerable.

Risk and Exploitability

The CVSS score of 5.3 indicates medium severity. The EPSS score is not available, so the probability of exploitation in the wild is uncertain. The flaw is not listed in CISA’s KEV catalog. Attackers with network access to the vulnerable frontend‑socket can exploit the improper authorization to perform actions beyond what is normally permitted by PackageKit. The CVE description does not specify the exact nature of these actions, so the impact could involve confidentiality, integrity, or availability of the system. Because the exploit has been publicly disclosed, administrators should consider the vulnerability potentially active.

Generated by OpenCVE AI on June 1, 2026 at 23:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade PackageKit to a release newer than 1.3.5 that contains the authorization fix.
  • Configure network firewall rules to restrict inbound traffic to the PackageKit frontend‑socket, limiting access to trusted hosts or localhost only.
  • Monitor relevant system logs for unusual file access or modification attempts by the PackageKit service, and investigate any anomalies.

Generated by OpenCVE AI on June 1, 2026 at 23:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 02 Jun 2026 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 01 Jun 2026 21:45:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in PackageKit up to 1.3.5. Affected is the function g_file_test of the file src/pk-transaction.c of the component API. Such manipulation of the argument frontend-socket leads to improper authorization. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
Title PackageKit API pk-transaction.c g_file_test improper authorization
First Time appeared Packagekit
Packagekit packagekit
Weaknesses CWE-266
CWE-285
CPEs cpe:2.3:a:packagekit:packagekit:*:*:*:*:*:*:*:*
Vendors & Products Packagekit
Packagekit packagekit
References
Metrics cvssV2_0

{'score': 4, 'vector': 'AV:N/AC:L/Au:S/C:P/I:N/A:N/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 4.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Packagekit Packagekit
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-02T12:31:04.692Z

Reserved: 2026-05-31T17:52:58.886Z

Link: CVE-2026-10294

cve-icon Vulnrichment

Updated: 2026-06-02T12:30:58.447Z

cve-icon NVD

Status : Deferred

Published: 2026-06-01T22:16:24.657

Modified: 2026-06-02T13:03:31.153

Link: CVE-2026-10294

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-01T23:45:40Z

Weaknesses