CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-0944

Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does not authenticate packages when the transaction is not simulated, which allows remote attackers to install arbitrary packages via a man-in-the-middle attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.9%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2012-0944

Sebastian Heinlein » Aptdaemon » Version: 0.20

cpe:2.3:a:sebastian_heinlein:aptdaemon:0.20
Sebastian Heinlein » Aptdaemon » Version: 0.30

cpe:2.3:a:sebastian_heinlein:aptdaemon:0.30
Sebastian Heinlein » Aptdaemon » Version: 0.31

cpe:2.3:a:sebastian_heinlein:aptdaemon:0.31
Sebastian Heinlein » Aptdaemon » Version: 0.32

cpe:2.3:a:sebastian_heinlein:aptdaemon:0.32
Sebastian Heinlein » Aptdaemon » Version: 0.33

cpe:2.3:a:sebastian_heinlein:aptdaemon:0.33
Sebastian Heinlein » Aptdaemon » Version: 0.34

cpe:2.3:a:sebastian_heinlein:aptdaemon:0.34
Sebastian Heinlein » Aptdaemon » Version: 0.40

cpe:2.3:a:sebastian_heinlein:aptdaemon:0.40
Sebastian Heinlein » Aptdaemon » Version: 0.41

cpe:2.3:a:sebastian_heinlein:aptdaemon:0.41
Sebastian Heinlein » Aptdaemon » Version: 0.42

cpe:2.3:a:sebastian_heinlein:aptdaemon:0.42
Canonical » Ubuntu Linux » Version: 11.04

cpe:2.3:o:canonical:ubuntu_linux:11.04
Canonical » Ubuntu Linux » Version: 11.10

cpe:2.3:o:canonical:ubuntu_linux:11.10
Canonical » Ubuntu Linux » Version: 12.04

cpe:2.3:o:canonical:ubuntu_linux:12.04

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-0944

Products

Pricing

Contact Us