Описание
Marco Trevisan discovered that the Ubuntu Advantage Desktop Daemon, before version 1.12, leaks the Pro token to unprivileged users by passing the token as an argument in plaintext.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-infra/bionic | released | 1.10.ubuntu0.18.04.1~esm1 |
| esm-infra/focal | released | 1.10.ubuntu0.20.04.1 |
| esm-infra/xenial | released | 1.10.ubuntu0.16.04.1~esm1 |
| focal | released | 1.10.ubuntu0.20.04.1 |
| jammy | released | 1.10.ubuntu0.22.04.2 |
| mantic | ignored | end of life, was needs-triage |
| noble | released | 1.11ubuntu0.1 |
| oracular | not-affected | |
| upstream | released | 1.12 |
Показывать по
10
EPSS
Процентиль: 5%
0.00022
Низкий
5.9 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.9
nvd
больше 1 года назад
Marco Trevisan discovered that the Ubuntu Advantage Desktop Daemon, before version 1.12, leaks the Pro token to unprivileged users by passing the token as an argument in plaintext.
CVSS3: 5.9
github
больше 1 года назад
Marco Trevisan discovered that the Ubuntu Advantage Desktop Daemon, before version 1.12, leaks the Pro token to unprivileged users by passing the token as an argument in plaintext.
EPSS
Процентиль: 5%
0.00022
Низкий
5.9 Medium
CVSS3