CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
5.1%
The default D-Bus access control rule in Midgard2 10.05.7.1 allows local
users to send arbitrary method calls or signals to any process on the
system bus and possibly execute arbitrary code with root privileges.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 16.04 | noarch | midgard2-core | < any | UNKNOWN |