Vulnerabilities > CVE-2022-0987

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

packagekit-project

redhat

NVD

Published: 2022-06-28

Updated: 2022-07-09

Summary

A flaw was found in PackageKit in the way some of the methods exposed by the Transaction interface examines files. This issue allows a local user to measure the time the methods take to execute and know whether a file owned by root or other users exists.

Vulnerable Configurations

Part	Description	Count
Application	Packagekit_Project Packagekit Project Packagekit *	1
OS	Redhat Redhat Enterprise Linux 9.0	1

References

https://bugzilla.redhat.com/show_bug.cgi?id=2064315

Vulnerabilities > CVE-2022-0987 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2022-0987"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2022-0987