CVE-2019-3842 - Permissions, Privileges, and Access Control vulnerability in multiple products

Publication

2019-04-09

Last modification

2019-04-26

Summary

In systemd before v242-rc4, it was discovered that pam_systemd does not properly sanitize the environment before using the XDG_SEAT variable. It is possible for an attacker, in some particular configurations, to set a XDG_SEAT environment variable which allows for commands to be checked against polkit policies using the "allow_active" element rather than "allow_any".

Classification

CWE-264 - Permissions, Privileges, and Access Control

Risk level (CVSS AV:L/AC:M/Au:N/C:P/I:P/A:P)

Medium

4.4

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products