Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Martin Pitt Subscribe
Filtered by product Jockey
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-1065 2 Canonical, Martin Pitt 2 Ubuntu Linux, Jockey 2013-10-04 4.6 MEDIUM N/A
backend.py in Jockey before 0.9.7-0ubuntu7.11 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288.