• Published Date: Wed 27 Nov 2019
  • Last Modified Date: Wed 11 Dec 2019

PackageKit 0.6.17 allows installation of unsigned RPM packages as though they were signed which may allow installation of non-trusted packages and execution of arbitrary code.


Severity: MEDIUM
Exploitability Score: 3.9
Impact Score: 6.4
Attack Vector (AV): LOCAL
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
Availability (A): PARTIAL

References (Advisories, Solutions, and Tools):

Note: This page is generated by our securitybot and has not been checked for errors. Feed Source: NVD