Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2016-9949

CWE-94 — Code Injection7 documents6 sources

Severity

7.8HIGH

EPSS

9.8%

top 7.04%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Apport Project Apport Canonical Ubuntu Linux

Timeline

PublishedDec 17

Latest updateMay 17

Description

An issue was discovered in Apport before 2.20.4. In apport/ui.py, Apport reads the CrashDB field and it then evaluates the field as Python code if it begins with a "{". This allows remote attackers to execute arbitrary Python code.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶Ubuntuapport< 2.14.1-0ubuntu3.23+1

▶NVDapport_project/apport2.20.3

▶NVDcanonical/ubuntu_linux12.10

Patches

Patch: bugs.launchpad.net ↗Patch: bugs.launchpad.net ↗

🔴Vulnerability Details

GHSA

GHSA-5hh7-vqxx-v3cj: An issue was discovered in Apport before 2↗2022-05-17

▶

CVEList

CVE-2016-9949: An issue was discovered in Apport before 2↗2016-12-17

▶

OSV

CVE-2016-9949: An issue was discovered in Apport before 2↗2016-12-14

▶

OSV

apport vulnerabilities↗2016-12-14

▶

💥Exploits & PoCs

Exploit-DB

Apport 2.x (Ubuntu Desktop 12.10 < 16.04) - Local Code Execution↗2016-12-14

▶

📋Vendor Advisories

Ubuntu

Apport vulnerabilities↗2016-12-14

▶