Information Disclosure in Update Manager for Ubuntu
CVE-2012-0948
Currently unrated
Key Information:
- Vendor
Canonical
- Vendor
- CVE Published:
- 7 June 2012
What is CVE-2012-0948?
An identified vulnerability in the Update Manager for specific versions of Ubuntu allows local users to exploit weak permissions on critical files, namely apt-clone_system_state.tar.gz and system_state.tar.gz. This exposure potentially permits unauthorized access to sensitive repository credentials, compromising the integrity of the system. Users are advised to review their permissions and apply recommended patches to safeguard their systems.