Vulnerability Details CVE-2014-0488
APT before 1.0.9 does not "invalidate repository data" when moving from an unauthenticated to authenticated state, which allows remote attackers to have unspecified impact via crafted repository data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.8%
CVSS Severity
CVSS v2 Score 6.8
Products affected by CVE-2014-0488
-
cpe:2.3:a:debian:advanced_package_tool:1.0.3
-
cpe:2.3:a:debian:advanced_package_tool:1.0.7