Known Vulnerabilities for products from Packagekit Project
Listed below are 5 of the newest known vulnerabilities associated with the vendor "Packagekit Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-16122 | PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is based on repository trust an... | 7.8 - HIGH | 2020-11-07 | 2022-10-21 |
| CVE-2020-16121 | PackageKit provided detailed error messages to unprivileged callers that exposed information about file presence and mimetype... | 3.3 - LOW | 2020-11-07 | 2020-11-18 |
| CVE-2018-1106 | An authentication bypass flaw has been found in PackageKit before 1.1.10 that allows users without administrator privileges t... | 5.5 - MEDIUM | 2018-04-23 | 2019-10-09 |
| CVE-2013-1764 | The Zypper (aka zypp) backend in PackageKit before 0.8.8 allows local users to downgrade packages via the "install updates" m... | 2.1 - LOW | 2014-04-16 | 2014-04-17 |
| CVE-2011-2515 | PackageKit 0.6.17 allows installation of unsigned RPM packages as though they were signed which may allow installation of non... | 5.3 - MEDIUM | 2019-11-27 | 2020-08-18 |
Known software with vulnerabilities from Packagekit Project
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Packagekit Project | Packagekit | - |