CVE-2018-1106

An authentication bypass flaw has been found in PackageKit before 1.1.10 that allows users without administrator privileges to install signed packages. A local attacker can use this vulnerability to install vulnerable packages to further compromise a system.

Published : 2018-04-23 20:29 Updated : 2019-10-09 23:38

2.1
CVSS Score More info
Score 2.1 / 10
2.1
Vendor Product Version URI
Packagekit Project Packagekit 0.8.1 cpe:/a:packagekit_project:packagekit:0.8.1
Packagekit Project Packagekit 0.8.2 cpe:/a:packagekit_project:packagekit:0.8.2
Packagekit Project Packagekit 0.8.3 cpe:/a:packagekit_project:packagekit:0.8.3
Packagekit Project Packagekit 0.8.4 cpe:/a:packagekit_project:packagekit:0.8.4
Packagekit Project Packagekit 0.8.5 cpe:/a:packagekit_project:packagekit:0.8.5
Packagekit Project Packagekit 0.8.6 cpe:/a:packagekit_project:packagekit:0.8.6
Packagekit Project Packagekit 0.8.7 cpe:/a:packagekit_project:packagekit:0.8.7
Canonical Ubuntu Linux 17.10 cpe:/o:canonical:ubuntu_linux:17.10
Debian Debian Linux 9.0 cpe:/o:debian:debian_linux:9.0
Redhat Enterprise Linux Server 7.0 cpe:/o:redhat:enterprise_linux_server:7.0
Redhat Enterprise Linux Desktop 7.0 cpe:/o:redhat:enterprise_linux_desktop:7.0
Redhat Enterprise Linux Server Aus 7.6 cpe:/o:redhat:enterprise_linux_server_aus:7.6
Redhat Enterprise Linux Server Eus 7.5 cpe:/o:redhat:enterprise_linux_server_eus:7.5
Redhat Enterprise Linux Server Eus 7.6 cpe:/o:redhat:enterprise_linux_server_eus:7.6
Redhat Enterprise Linux Server Tus 7.6 cpe:/o:redhat:enterprise_linux_server_tus:7.6
Redhat Enterprise Linux Workstation 7.0 cpe:/o:redhat:enterprise_linux_workstation:7.0
Packagekit Project Packagekit 0.1.0 cpe:/a:packagekit_project:packagekit:0.1.0
Packagekit Project Packagekit 0.1.1 cpe:/a:packagekit_project:packagekit:0.1.1
Packagekit Project Packagekit 0.1.2 cpe:/a:packagekit_project:packagekit:0.1.2
Packagekit Project Packagekit 0.1.3 cpe:/a:packagekit_project:packagekit:0.1.3
Packagekit Project Packagekit 0.1.4 cpe:/a:packagekit_project:packagekit:0.1.4
Packagekit Project Packagekit 0.1.5 cpe:/a:packagekit_project:packagekit:0.1.5
Packagekit Project Packagekit 0.1.6 cpe:/a:packagekit_project:packagekit:0.1.6
Packagekit Project Packagekit 0.1.7 cpe:/a:packagekit_project:packagekit:0.1.7
Packagekit Project Packagekit 0.1.8 cpe:/a:packagekit_project:packagekit:0.1.8
Packagekit Project Packagekit 0.1.9 cpe:/a:packagekit_project:packagekit:0.1.9
Packagekit Project Packagekit 0.1.10 cpe:/a:packagekit_project:packagekit:0.1.10
Packagekit Project Packagekit 0.1.11 cpe:/a:packagekit_project:packagekit:0.1.11
Packagekit Project Packagekit 0.2.0 cpe:/a:packagekit_project:packagekit:0.2.0
Packagekit Project Packagekit 0.2.1 cpe:/a:packagekit_project:packagekit:0.2.1
Packagekit Project Packagekit 0.2.2 cpe:/a:packagekit_project:packagekit:0.2.2
Packagekit Project Packagekit 0.2.3 cpe:/a:packagekit_project:packagekit:0.2.3
Packagekit Project Packagekit 0.2.4 cpe:/a:packagekit_project:packagekit:0.2.4
Packagekit Project Packagekit 0.2.5 cpe:/a:packagekit_project:packagekit:0.2.5
Packagekit Project Packagekit 0.3.0 cpe:/a:packagekit_project:packagekit:0.3.0
Packagekit Project Packagekit 0.3.1 cpe:/a:packagekit_project:packagekit:0.3.1
Packagekit Project Packagekit 0.3.2 cpe:/a:packagekit_project:packagekit:0.3.2
Packagekit Project Packagekit 0.3.3 cpe:/a:packagekit_project:packagekit:0.3.3
Packagekit Project Packagekit 0.3.4 cpe:/a:packagekit_project:packagekit:0.3.4
Packagekit Project Packagekit 0.3.5 cpe:/a:packagekit_project:packagekit:0.3.5
Packagekit Project Packagekit 0.3.6 cpe:/a:packagekit_project:packagekit:0.3.6
Packagekit Project Packagekit 0.3.7 cpe:/a:packagekit_project:packagekit:0.3.7
Packagekit Project Packagekit 0.3.8 cpe:/a:packagekit_project:packagekit:0.3.8
Packagekit Project Packagekit 0.3.9 cpe:/a:packagekit_project:packagekit:0.3.9
Packagekit Project Packagekit 0.3.10 cpe:/a:packagekit_project:packagekit:0.3.10
Packagekit Project Packagekit 0.3.11 cpe:/a:packagekit_project:packagekit:0.3.11
Packagekit Project Packagekit 0.3.12 cpe:/a:packagekit_project:packagekit:0.3.12
Packagekit Project Packagekit 0.3.13 cpe:/a:packagekit_project:packagekit:0.3.13
Packagekit Project Packagekit 0.3.14 cpe:/a:packagekit_project:packagekit:0.3.14
Packagekit Project Packagekit 0.3.15 cpe:/a:packagekit_project:packagekit:0.3.15
Packagekit Project Packagekit 0.3.16 cpe:/a:packagekit_project:packagekit:0.3.16
Packagekit Project Packagekit 0.4.0 cpe:/a:packagekit_project:packagekit:0.4.0
Packagekit Project Packagekit 0.4.1 cpe:/a:packagekit_project:packagekit:0.4.1
Packagekit Project Packagekit 0.4.2 cpe:/a:packagekit_project:packagekit:0.4.2
Packagekit Project Packagekit 0.4.3 cpe:/a:packagekit_project:packagekit:0.4.3
Packagekit Project Packagekit 0.4.4 cpe:/a:packagekit_project:packagekit:0.4.4
Packagekit Project Packagekit 0.4.5 cpe:/a:packagekit_project:packagekit:0.4.5
Packagekit Project Packagekit 0.4.6 cpe:/a:packagekit_project:packagekit:0.4.6
Packagekit Project Packagekit 0.4.7 cpe:/a:packagekit_project:packagekit:0.4.7
Packagekit Project Packagekit 0.4.8 cpe:/a:packagekit_project:packagekit:0.4.8
Packagekit Project Packagekit 0.4.9 cpe:/a:packagekit_project:packagekit:0.4.9
Packagekit Project Packagekit 0.5.0 cpe:/a:packagekit_project:packagekit:0.5.0
Packagekit Project Packagekit 0.5.1 cpe:/a:packagekit_project:packagekit:0.5.1
Packagekit Project Packagekit 0.5.2 cpe:/a:packagekit_project:packagekit:0.5.2
Packagekit Project Packagekit 0.5.3 cpe:/a:packagekit_project:packagekit:0.5.3
Packagekit Project Packagekit 0.5.4 cpe:/a:packagekit_project:packagekit:0.5.4
Packagekit Project Packagekit 0.5.5 cpe:/a:packagekit_project:packagekit:0.5.5
Packagekit Project Packagekit 0.5.6 cpe:/a:packagekit_project:packagekit:0.5.6
Packagekit Project Packagekit 0.5.7 cpe:/a:packagekit_project:packagekit:0.5.7
Packagekit Project Packagekit 0.5.8 cpe:/a:packagekit_project:packagekit:0.5.8
Packagekit Project Packagekit 0.6.0 cpe:/a:packagekit_project:packagekit:0.6.0
Packagekit Project Packagekit 0.6.1 cpe:/a:packagekit_project:packagekit:0.6.1
Packagekit Project Packagekit 0.6.2 cpe:/a:packagekit_project:packagekit:0.6.2
Packagekit Project Packagekit 0.6.3 cpe:/a:packagekit_project:packagekit:0.6.3
Packagekit Project Packagekit 0.6.4 cpe:/a:packagekit_project:packagekit:0.6.4
Packagekit Project Packagekit 0.6.5 cpe:/a:packagekit_project:packagekit:0.6.5
Packagekit Project Packagekit 0.6.6 cpe:/a:packagekit_project:packagekit:0.6.6
Packagekit Project Packagekit 0.6.7 cpe:/a:packagekit_project:packagekit:0.6.7
Packagekit Project Packagekit 0.6.8 cpe:/a:packagekit_project:packagekit:0.6.8
Packagekit Project Packagekit 0.6.9 cpe:/a:packagekit_project:packagekit:0.6.9
Packagekit Project Packagekit 0.6.10 cpe:/a:packagekit_project:packagekit:0.6.10
Packagekit Project Packagekit 0.6.11 cpe:/a:packagekit_project:packagekit:0.6.11
Packagekit Project Packagekit 0.6.12 cpe:/a:packagekit_project:packagekit:0.6.12
Packagekit Project Packagekit 0.6.13 cpe:/a:packagekit_project:packagekit:0.6.13
Packagekit Project Packagekit 0.6.14 cpe:/a:packagekit_project:packagekit:0.6.14
Packagekit Project Packagekit 0.6.15 cpe:/a:packagekit_project:packagekit:0.6.15
Packagekit Project Packagekit 0.6.16 cpe:/a:packagekit_project:packagekit:0.6.16
Packagekit Project Packagekit 0.6.17 cpe:/a:packagekit_project:packagekit:0.6.17
Packagekit Project Packagekit 0.6.18 cpe:/a:packagekit_project:packagekit:0.6.18
Packagekit Project Packagekit 0.6.19 cpe:/a:packagekit_project:packagekit:0.6.19
Packagekit Project Packagekit 0.6.20 cpe:/a:packagekit_project:packagekit:0.6.20
Packagekit Project Packagekit 0.6.21 cpe:/a:packagekit_project:packagekit:0.6.21
Packagekit Project Packagekit 0.6.22 cpe:/a:packagekit_project:packagekit:0.6.22
Packagekit Project Packagekit 0.7.0 cpe:/a:packagekit_project:packagekit:0.7.0
Packagekit Project Packagekit 0.7.1 cpe:/a:packagekit_project:packagekit:0.7.1
Packagekit Project Packagekit 0.7.2 cpe:/a:packagekit_project:packagekit:0.7.2
Packagekit Project Packagekit 0.7.3 cpe:/a:packagekit_project:packagekit:0.7.3
Packagekit Project Packagekit 0.7.4 cpe:/a:packagekit_project:packagekit:0.7.4
Packagekit Project Packagekit 0.7.5 cpe:/a:packagekit_project:packagekit:0.7.5
Packagekit Project Packagekit 0.7.6 cpe:/a:packagekit_project:packagekit:0.7.6
Packagekit Project Packagekit 0.8.8 cpe:/a:packagekit_project:packagekit:0.8.8
Packagekit Project Packagekit 0.8.9 cpe:/a:packagekit_project:packagekit:0.8.9
Packagekit Project Packagekit 0.8.10 cpe:/a:packagekit_project:packagekit:0.8.10
Packagekit Project Packagekit 0.8.11 cpe:/a:packagekit_project:packagekit:0.8.11
Packagekit Project Packagekit 0.8.12 cpe:/a:packagekit_project:packagekit:0.8.12
Packagekit Project Packagekit 0.8.13 cpe:/a:packagekit_project:packagekit:0.8.13
Packagekit Project Packagekit 0.8.14 cpe:/a:packagekit_project:packagekit:0.8.14
Packagekit Project Packagekit 0.8.15 cpe:/a:packagekit_project:packagekit:0.8.15
Packagekit Project Packagekit 0.8.16 cpe:/a:packagekit_project:packagekit:0.8.16
Packagekit Project Packagekit 0.8.17 cpe:/a:packagekit_project:packagekit:0.8.17
Packagekit Project Packagekit 0.9.1 cpe:/a:packagekit_project:packagekit:0.9.1
Packagekit Project Packagekit 0.9.2 cpe:/a:packagekit_project:packagekit:0.9.2
Packagekit Project Packagekit 0.9.3 cpe:/a:packagekit_project:packagekit:0.9.3
Packagekit Project Packagekit 0.9.4 cpe:/a:packagekit_project:packagekit:0.9.4
Packagekit Project Packagekit 0.9.5 cpe:/a:packagekit_project:packagekit:0.9.5
Packagekit Project Packagekit 1.0.0 cpe:/a:packagekit_project:packagekit:1.0.0
Packagekit Project Packagekit 1.0.1 cpe:/a:packagekit_project:packagekit:1.0.1
Packagekit Project Packagekit 1.0.2 cpe:/a:packagekit_project:packagekit:1.0.2
Packagekit Project Packagekit 1.0.3 cpe:/a:packagekit_project:packagekit:1.0.3
Packagekit Project Packagekit 1.0.4 cpe:/a:packagekit_project:packagekit:1.0.4
Packagekit Project Packagekit 1.0.5 cpe:/a:packagekit_project:packagekit:1.0.5
Packagekit Project Packagekit 1.0.6 cpe:/a:packagekit_project:packagekit:1.0.6
Packagekit Project Packagekit 1.0.7 cpe:/a:packagekit_project:packagekit:1.0.7
Packagekit Project Packagekit 1.0.8 cpe:/a:packagekit_project:packagekit:1.0.8
Packagekit Project Packagekit 1.0.9 cpe:/a:packagekit_project:packagekit:1.0.9
Packagekit Project Packagekit 1.0.10 cpe:/a:packagekit_project:packagekit:1.0.10
Packagekit Project Packagekit 1.0.11 cpe:/a:packagekit_project:packagekit:1.0.11
Packagekit Project Packagekit 1.1.0 cpe:/a:packagekit_project:packagekit:1.1.0
Packagekit Project Packagekit 1.1.1 cpe:/a:packagekit_project:packagekit:1.1.1
Packagekit Project Packagekit 1.1.2 cpe:/a:packagekit_project:packagekit:1.1.2
Packagekit Project Packagekit 1.1.3 cpe:/a:packagekit_project:packagekit:1.1.3
Packagekit Project Packagekit 1.1.4 cpe:/a:packagekit_project:packagekit:1.1.4
Packagekit Project Packagekit 1.1.5 cpe:/a:packagekit_project:packagekit:1.1.5
Packagekit Project Packagekit 1.1.6 cpe:/a:packagekit_project:packagekit:1.1.6
Packagekit Project Packagekit 1.1.7 cpe:/a:packagekit_project:packagekit:1.1.7
Packagekit Project Packagekit 1.1.8 cpe:/a:packagekit_project:packagekit:1.1.8
Packagekit Project Packagekit 1.1.9 cpe:/a:packagekit_project:packagekit:1.1.9
  1. Canonical (1) Search CVE
    1. Ubuntu Linux (1) Search CVE
      1. 17.10
  2. Redhat (6) Search CVE
    1. Enterprise Linux Desktop (1) Search CVE
      1. 7.0
    2. Enterprise Linux Server Eus (2) Search CVE
      1. 7.5
      2. 7.6
    3. Enterprise Linux Workstation (1) Search CVE
      1. 7.0
    4. Enterprise Linux Server Aus (1) Search CVE
      1. 7.6
    5. Enterprise Linux Server Tus (1) Search CVE
      1. 7.6
    6. Enterprise Linux Server (1) Search CVE
      1. 7.0
  3. Packagekit Project (1) Search CVE
    1. Packagekit (128) Search CVE
      1. 0.8.1
      2. 0.8.2
      3. 0.8.3
      4. 0.8.4
      5. 0.8.5
      6. 0.8.6
      7. 0.8.7
      8. 0.1.0
      9. 0.1.1
      10. 0.1.2
      11. 0.1.3
      12. 0.1.4
      13. 0.1.5
      14. 0.1.6
      15. 0.1.7
      16. 0.1.8
      17. 0.1.9
      18. 0.1.10
      19. 0.1.11
      20. 0.2.0
      21. 0.2.1
      22. 0.2.2
      23. 0.2.3
      24. 0.2.4
      25. 0.2.5
      26. 0.3.0
      27. 0.3.1
      28. 0.3.2
      29. 0.3.3
      30. 0.3.4
      31. 0.3.5
      32. 0.3.6
      33. 0.3.7
      34. 0.3.8
      35. 0.3.9
      36. 0.3.10
      37. 0.3.11
      38. 0.3.12
      39. 0.3.13
      40. 0.3.14
      41. 0.3.15
      42. 0.3.16
      43. 0.4.0
      44. 0.4.1
      45. 0.4.2
      46. 0.4.3
      47. 0.4.4
      48. 0.4.5
      49. 0.4.6
      50. 0.4.7
      51. 0.4.8
      52. 0.4.9
      53. 0.5.0
      54. 0.5.1
      55. 0.5.2
      56. 0.5.3
      57. 0.5.4
      58. 0.5.5
      59. 0.5.6
      60. 0.5.7
      61. 0.5.8
      62. 0.6.0
      63. 0.6.1
      64. 0.6.2
      65. 0.6.3
      66. 0.6.4
      67. 0.6.5
      68. 0.6.6
      69. 0.6.7
      70. 0.6.8
      71. 0.6.9
      72. 0.6.10
      73. 0.6.11
      74. 0.6.12
      75. 0.6.13
      76. 0.6.14
      77. 0.6.15
      78. 0.6.16
      79. 0.6.17
      80. 0.6.18
      81. 0.6.19
      82. 0.6.20
      83. 0.6.21
      84. 0.6.22
      85. 0.7.0
      86. 0.7.1
      87. 0.7.2
      88. 0.7.3
      89. 0.7.4
      90. 0.7.5
      91. 0.7.6
      92. 0.8.8
      93. 0.8.9
      94. 0.8.10
      95. 0.8.11
      96. 0.8.12
      97. 0.8.13
      98. 0.8.14
      99. 0.8.15
      100. 0.8.16
      101. 0.8.17
      102. 0.9.1
      103. 0.9.2
      104. 0.9.3
      105. 0.9.4
      106. 0.9.5
      107. 1.0.0
      108. 1.0.1
      109. 1.0.2
      110. 1.0.3
      111. 1.0.4
      112. 1.0.5
      113. 1.0.6
      114. 1.0.7
      115. 1.0.8
      116. 1.0.9
      117. 1.0.10
      118. 1.0.11
      119. 1.1.0
      120. 1.1.1
      121. 1.1.2
      122. 1.1.3
      123. 1.1.4
      124. 1.1.5
      125. 1.1.6
      126. 1.1.7
      127. 1.1.8
      128. 1.1.9
  4. Debian (1) Search CVE
    1. Debian Linux (1) Search CVE
      1. 9.0

CWE

ID Name Description Links
CWE-287 Improper Authentication When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct. CVE

History of changes

Date Event
2019-10-09 23:38
2019-04-22 14:06
2018-07-10 01:29
2018-06-06 13:55
2018-05-24 01:29
2018-04-26 01:29
2018-04-23 20:29

New CVE