Vulnerability Details : CVE-2013-4288
Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is performed, related to (1) the polkit_unix_process_new API function, (2) the dbus API, or (3) the --process (unix-process) option for authorization to pkcheck.
Products affected by CVE-2013-4288
- cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*
- cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*
- cpe:2.3:a:polkit_project:polkit:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-4288
0.03%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-4288
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
CWE ids for CVE-2013-4288
-
The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.Assigned by: nvd@nist.gov (Primary)
References for CVE-2013-4288
-
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=1002375
1002375 – (CVE-2013-4288) CVE-2013-4288 polkit: unix-process subject for authorization is racyIssue Tracking;Patch;Third Party Advisory
-
http://lists.opensuse.org/opensuse-updates/2013-10/msg00004.html
openSUSE-SU-2013:1527-1: moderate: update for systemdMailing List;Third Party Advisory
-
http://rhn.redhat.com/errata/RHSA-2013-1270.html
RHSA-2013:1270 - Security Advisory - Red Hat Customer PortalThird Party Advisory
-
http://lists.opensuse.org/opensuse-updates/2013-11/msg00000.html
openSUSE-SU-2013:1620-1: moderate: update for hplipMailing List;Third Party Advisory
-
http://lists.opensuse.org/opensuse-updates/2013-10/msg00005.html
openSUSE-SU-2013:1528-1: moderate: systemd: bugfix andMailing List;Third Party Advisory
-
http://seclists.org/oss-sec/2013/q3/626
oss-sec: Re: Fwd: [vs-plain] polkit racesMailing List;Third Party Advisory
-
http://www.ubuntu.com/usn/USN-1953-1
USN-1953-1: polkit vulnerability | Ubuntu security noticesThird Party Advisory
-
http://lists.opensuse.org/opensuse-updates/2013-10/msg00062.html
openSUSE-SU-2013:1617-1: moderate: update for hplipMailing List;Third Party Advisory
-
http://www.openwall.com/lists/oss-security/2013/09/18/4
oss-security - Fwd: [vs-plain] polkit racesMailing List;Third Party Advisory
-
http://rhn.redhat.com/errata/RHSA-2013-1460.html
RHSA-2013:1460 - Security Advisory - Red Hat Customer PortalThird Party Advisory
Jump to