CVE-2015-1323

Publication date 16 June 2015

Last updated 24 July 2024

Ubuntu priority

Medium

Why this priority?

Cvss 3 Severity Score

5.5 · Medium

Score breakdown

The simulate dbus method in aptdaemon before 1.1.1+bzr982-0ubuntu3.1 as packaged in Ubuntu 15.04, before 1.1.1+bzr980-0ubuntu1.1 as packaged in Ubuntu 14.10, before 1.1.1-1ubuntu5.2 as packaged in Ubuntu 14.04 LTS, before 0.43+bzr805-0ubuntu10 as packaged in Ubuntu 12.04 LTS allows local users to obtain sensitive information, or access files with root permissions.

Status

Package Ubuntu Release Status
aptdaemon 15.04 vivid
Fixed 1.1.1+bzr982-0ubuntu3.1
14.10 utopic
Fixed 1.1.1+bzr980-0ubuntu1.1
14.04 LTS trusty
Fixed 1.1.1-1ubuntu5.2
12.04 LTS precise
Fixed 0.43+bzr805-0ubuntu10
10.04 LTS lucid Ignored end of life

Severity score breakdown

Parameter Value
Base score 5.5 · Medium
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Scope Unchanged
Confidentiality High
Integrity impact None
Availability impact None
Vector CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References

Related Ubuntu Security Notices (USN)

Other references