CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-1061

dbus/SoftwarePropertiesDBus.py in Software Properties 0.92.17 before 0.92.17.3, 0.92.9 before 0.92.9.3, and 0.82.7 before 0.82.7.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.7%

CVSS Severity

CVSS v2 Score 4.6

References

Products affected by CVE-2013-1061

Marc Deslauriers » Software-Properties » Version: 0.82.7

cpe:2.3:a:marc_deslauriers:software-properties:0.82.7
Marc Deslauriers » Software-Properties » Version: 0.82.7.1

cpe:2.3:a:marc_deslauriers:software-properties:0.82.7.1
Marc Deslauriers » Software-Properties » Version: 0.82.7.2

cpe:2.3:a:marc_deslauriers:software-properties:0.82.7.2
Marc Deslauriers » Software-Properties » Version: 0.82.7.3

cpe:2.3:a:marc_deslauriers:software-properties:0.82.7.3
Marc Deslauriers » Software-Properties » Version: 0.82.7.4

cpe:2.3:a:marc_deslauriers:software-properties:0.82.7.4
Marc Deslauriers » Software-Properties » Version: 0.92.17

cpe:2.3:a:marc_deslauriers:software-properties:0.92.17
Marc Deslauriers » Software-Properties » Version: 0.92.17.1

cpe:2.3:a:marc_deslauriers:software-properties:0.92.17.1
Marc Deslauriers » Software-Properties » Version: 0.92.17.2

cpe:2.3:a:marc_deslauriers:software-properties:0.92.17.2
Marc Deslauriers » Software-Properties » Version: 0.92.9

cpe:2.3:a:marc_deslauriers:software-properties:0.92.9
Marc Deslauriers » Software-Properties » Version: 0.92.9.1

cpe:2.3:a:marc_deslauriers:software-properties:0.92.9.1
Marc Deslauriers » Software-Properties » Version: 0.92.9.2

cpe:2.3:a:marc_deslauriers:software-properties:0.92.9.2
Canonical » Ubuntu Linux » Version: 12.04

cpe:2.3:o:canonical:ubuntu_linux:12.04
Canonical » Ubuntu Linux » Version: 12.10

cpe:2.3:o:canonical:ubuntu_linux:12.10
Canonical » Ubuntu Linux » Version: 13.04

cpe:2.3:o:canonical:ubuntu_linux:13.04

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-1061

Products

Pricing

Contact Us