CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
5.1%
Fabian Vogt discovered that Plasma Workspace incorrectly handled
connections via ICE. A local attacker could possibly use this issue to
gain access to another user’s session manager and execute arbitrary code.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 24.04 | noarch | plasma-workspace | < 4:5.27.11-0ubuntu4.1 | UNKNOWN |
Ubuntu | 24.04 | noarch | libcolorcorrect5 | < 4:5.27.11-0ubuntu4.1 | UNKNOWN |
Ubuntu | 24.04 | noarch | libcolorcorrect5-dbgsym | < 4:5.27.11-0ubuntu4.1 | UNKNOWN |
Ubuntu | 24.04 | noarch | libkfontinst5 | < 4:5.27.11-0ubuntu4.1 | UNKNOWN |
Ubuntu | 24.04 | noarch | libkfontinst5-dbgsym | < 4:5.27.11-0ubuntu4.1 | UNKNOWN |
Ubuntu | 24.04 | noarch | libkfontinstui5 | < 4:5.27.11-0ubuntu4.1 | UNKNOWN |
Ubuntu | 24.04 | noarch | libkfontinstui5-dbgsym | < 4:5.27.11-0ubuntu4.1 | UNKNOWN |
Ubuntu | 24.04 | noarch | libkworkspace5-5 | < 4:5.27.11-0ubuntu4.1 | UNKNOWN |
Ubuntu | 24.04 | noarch | libkworkspace5-5-dbgsym | < 4:5.27.11-0ubuntu4.1 | UNKNOWN |
Ubuntu | 24.04 | noarch | libnotificationmanager1 | < 4:5.27.11-0ubuntu4.1 | UNKNOWN |