Canonical » Ubuntu Software Properties : Security Vulnerabilities, CVEs, CVSS score >= 4
The apt-add-repository tool in Ubuntu Software Properties 0.75.x before 0.75.10.3, 0.80.x before 0.80.9.2, 0.81.x before 0.81.13.5, 0.82.x before 0.82.7.3, and 0.92.x before 0.92.8 does not properly check PPA GPG keys imported from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-the-middle (MITM) attack.
Max CVSS
5.8
EPSS Score
0.21%
Published
2012-10-10
Updated
2017-08-29
1 vulnerabilities found