← back
CVE-2015-1341

Apport privilege escalation through Python module imports

CVSS 7.4 HIGHEPSS 0.4%
Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function _python_module_path.
CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected products
Ubuntu · Apport

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://launchpad.net/apport/trunk/2.19.2https://usn.ubuntu.com/2782-1/