CVE-2017-8422 - OpenCVE

KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app.

No CVSS v3.1

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Kde	Kdelibs Kauth

Configuration 1 [-]

OR	cpe:2.3:a:kde:kauth::::::::
	cpe:2.3:a:kde:kdelibs::::::::

References

Link	Resource
http://www.debian.org/security/2017/dsa-3849
http://www.openwall.com/lists/oss-security/2017/05/10/3	Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/98412	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1038480
https://access.redhat.com/errata/RHSA-2017:1264
https://bugzilla.redhat.com/show_bug.cgi?id=1449647	Issue Tracking Patch
https://cgit.kde.org/kauth.git/commit/?id=df875f725293af53399f5146362eb158b4f9216a	Patch
https://cgit.kde.org/kdelibs.git/commit/?id=264e97625abe2e0334f97de17f6ffb52582888ab	Patch
https://security.gentoo.org/glsa/201706-29
https://www.exploit-db.com/exploits/42053/
https://www.kde.org/info/security/advisory-20170510-1.txt	Patch Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2017-05-17T14:00:00

Updated: 2018-01-04T19:57:01

Reserved: 2017-05-02T00:00:00

Link: CVE-2017-8422

JSON object: View

NVD Information

Status : Modified

Published: 2017-05-17T14:29:00.387

Modified: 2019-10-03T00:03:26.223

Link: CVE-2017-8422

JSON object: View

Redhat Information

No data.

CWE

CWE-290

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2017-05-10T00:00:00", "descriptions": [{"lang": "en", "value": "KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-01-04T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1038480", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1038480"}, {"name": "42053", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/42053/"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.kde.org/info/security/advisory-20170510-1.txt"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449647"}, {"name": "98412", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/98412"}, {"name": "GLSA-201706-29", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201706-29"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://cgit.kde.org/kdelibs.git/commit/?id=264e97625abe2e0334f97de17f6ffb52582888ab"}, {"name": "DSA-3849", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2017/dsa-3849"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://cgit.kde.org/kauth.git/commit/?id=df875f725293af53399f5146362eb158b4f9216a"}, {"name": "[oss-security] 20170510 generic kde LPE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2017/05/10/3"}, {"name": "RHSA-2017:1264", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2017:1264"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2017-8422", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1038480", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1038480"}, {"name": "42053", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/42053/"}, {"name": "https://www.kde.org/info/security/advisory-20170510-1.txt", "refsource": "CONFIRM", "url": "https://www.kde.org/info/security/advisory-20170510-1.txt"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1449647", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449647"}, {"name": "98412", "refsource": "BID", "url": "http://www.securityfocus.com/bid/98412"}, {"name": "GLSA-201706-29", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201706-29"}, {"name": "https://cgit.kde.org/kdelibs.git/commit/?id=264e97625abe2e0334f97de17f6ffb52582888ab", "refsource": "CONFIRM", "url": "https://cgit.kde.org/kdelibs.git/commit/?id=264e97625abe2e0334f97de17f6ffb52582888ab"}, {"name": "DSA-3849", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2017/dsa-3849"}, {"name": "https://cgit.kde.org/kauth.git/commit/?id=df875f725293af53399f5146362eb158b4f9216a", "refsource": "CONFIRM", "url": "https://cgit.kde.org/kauth.git/commit/?id=df875f725293af53399f5146362eb158b4f9216a"}, {"name": "[oss-security] 20170510 generic kde LPE", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2017/05/10/3"}, {"name": "RHSA-2017:1264", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2017:1264"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2017-8422", "datePublished": "2017-05-17T14:00:00", "dateReserved": "2017-05-02T00:00:00", "dateUpdated": "2018-01-04T19:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:kde:kauth:*:*:*:*:*:*:*:*", "matchCriteriaId": "613FFB8B-CF03-4E1C-9D6D-C186A19B9F60", "versionEndIncluding": "5.33", "vulnerable": true}, {"criteria": "cpe:2.3:a:kde:kdelibs:*:*:*:*:*:*:*:*", "matchCriteriaId": "08C24977-D991-43E7-AF7E-BA489EC00903", "versionEndIncluding": "4.14.31", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app."}, {"lang": "es", "value": "KDelibs de KDE antes de 4.14.32 y KAuth antes de 5.34 permiten que los usuarios locales obtengan privilegios de root por spoofing de un callerID y aprovechando una aplicaci\u00f3n de ayuda privilegiada."}], "id": "CVE-2017-8422", "lastModified": "2019-10-03T00:03:26.223", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-05-17T14:29:00.387", "references": [{"source": "cve@mitre.org", "url": "http://www.debian.org/security/2017/dsa-3849"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.openwall.com/lists/oss-security/2017/05/10/3"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/98412"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id/1038480"}, {"source": "cve@mitre.org", "url": "https://access.redhat.com/errata/RHSA-2017:1264"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Patch"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449647"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://cgit.kde.org/kauth.git/commit/?id=df875f725293af53399f5146362eb158b4f9216a"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://cgit.kde.org/kdelibs.git/commit/?id=264e97625abe2e0334f97de17f6ffb52582888ab"}, {"source": "cve@mitre.org", "url": "https://security.gentoo.org/glsa/201706-29"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/42053/"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.kde.org/info/security/advisory-20170510-1.txt"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-290"}], "source": "nvd@nist.gov", "type": "Primary"}]}