CVE-2013-4288

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is performed, related to (1) the polkit_unix_process_new API function, (2) the dbus API, or (3) the --process (unix-process) option for authorization to pkcheck.

References

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=1002375

http://lists.opensuse.org/opensuse-updates/2013-10/msg00004.html

http://lists.opensuse.org/opensuse-updates/2013-10/msg00005.html

http://lists.opensuse.org/opensuse-updates/2013-10/msg00062.html

http://lists.opensuse.org/opensuse-updates/2013-11/msg00000.html

http://rhn.redhat.com/errata/RHSA-2013-1270.html

http://rhn.redhat.com/errata/RHSA-2013-1460.html

http://seclists.org/oss-sec/2013/q3/626

http://www.openwall.com/lists/oss-security/2013/09/18/4

http://www.ubuntu.com/usn/USN-1953-1

Details

Source: MITRE

Published: 2013-10-03

Updated: 2020-11-16

Type: CWE-362

Risk Information

CVSS v2

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH

Tenable Plugins

View all (15 total)

IDNameProductFamilySeverity
122573OracleVM 3.3 / 3.4 : polkit (OVMSA-2019-0008)NessusOracleVM Local Security Checks
medium
78977RHEL 6 : rhev-hypervisor6 (RHSA-2013:1460)NessusRed Hat Local Security Checks
high
76271GLSA-201406-27 : polkit, Spice-Gtk, systemd, HPLIP, libvirt: Privilege escalationNessusGentoo Local Security Checks
high
75183openSUSE Security Update : hplip (openSUSE-SU-2013:1617-1)NessusSuSE Local Security Checks
high
75159openSUSE Security Update : systemd (openSUSE-SU-2013:1527-1)NessusSuSE Local Security Checks
high
75158openSUSE Security Update : systemd (openSUSE-SU-2013:1528-1)NessusSuSE Local Security Checks
high
70185Mandriva Linux Security Advisory : polkit (MDVSA-2013:243)NessusMandriva Local Security Checks
high
70063Fedora 20 : polkit-0.112-1.fc20 (2013-17160)NessusFedora Local Security Checks
high
70047Fedora 18 : polkit-0.107-6.fc18 (2013-17197)NessusFedora Local Security Checks
high
70038Fedora 19 : polkit-0.112-1.fc19 (2013-17191)NessusFedora Local Security Checks
high
70016Scientific Linux Security Update : polkit on SL6.x i386/x86_64 (20130919)NessusScientific Linux Local Security Checks
high
70010RHEL 6 : polkit (RHSA-2013:1270)NessusRed Hat Local Security Checks
high
70006Oracle Linux 6 : polkit (ELSA-2013-1270)NessusOracle Linux Local Security Checks
high
69998CentOS 6 : polkit (CESA-2013:1270)NessusCentOS Local Security Checks
high
69971Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : policykit-1 vulnerability (USN-1953-1)NessusUbuntu Local Security Checks
high