CVE-2022-23220 : USBView 2.1 before 2.2 allows some local users (e.g., ones logged in via SSH) to

USBView 2.1 before 2.2 allows some local users (e.g., ones logged in via SSH) to execute arbitrary code as root because certain Polkit settings (e.g., allow_any=yes) for pkexec disable the authentication requirement. Code execution can, for example, use the --gtk-module option. This affects Ubuntu, Debian, and Gentoo.

Published 2022-01-21 16:15:08

Updated 2023-11-09 20:56:34

Source MITRE

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2022-23220

Usbview Project » Usbview
Versions before (<) 2.2
cpe:2.3:a:usbview_project:usbview:*:*:*:*:*:*:*:*
Matching versions
When used together with: Canonical » Ubuntu Linux » Version: N/A
When used together with: Debian » Debian Linux » Version: N/A
When used together with: Gentoo » Linux » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2022-23220

EPSS FAQ

0.08%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 25 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-23220

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	1.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2022-23220

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Assigned by: nvd@nist.gov (Primary)
CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2022-23220

http://www.openwall.com/lists/oss-security/2022/01/22/1

oss-security - Re: usbview polkit policy local root exploit (CVE-2022-23220)
Mailing List;Third Party Advisory
https://www.openwall.com/lists/oss-security/2022/01/21/1

oss-security - usbview polkit policy local root exploit (CVE-2022-23220)
Exploit;Mailing List;Patch;Third Party Advisory
https://security.gentoo.org/glsa/202310-15

USBView: root privilege escalation via insecure polkit settings (GLSA 202310-15) — Gentoo security
Third Party Advisory
https://www.debian.org/security/2022/dsa-5052

Debian -- Security Information -- DSA-5052-1 usbview
Third Party Advisory
https://github.com/gregkh/usbview/commit/bf374fa4e5b9a756789dfd88efa93806a395463b

org.freedesktop.pkexec.usbview.policy: fix a local root privilege esc… · gregkh/usbview@bf374fa · GitHub
Patch;Third Party Advisory

Jump to

Vulnerability Details : CVE-2022-23220

Products affected by CVE-2022-23220

Exploit prediction scoring system (EPSS) score for CVE-2022-23220

CVSS scores for CVE-2022-23220

CWE ids for CVE-2022-23220

References for CVE-2022-23220