{"containers":{"cna":{"affected":[{"product":"Apport","vendor":"Ubuntu","versions":[{"lessThan":"2.0.1-0ubuntu17.13","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"2.19.1-0ubuntu4","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"2.17.2-0ubuntu1.7","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"2.14.1-0ubuntu3.18","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"2.19.2","status":"affected","version":"unspecified","versionType":"custom"}]}],"credits":[{"lang":"en","value":"Gabriel Campana"}],"datePublic":"2015-10-27T00:00:00.000Z","descriptions":[{"lang":"en","value":"Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function _python_module_path."}],"metrics":[{"cvssV3_0":{"attackComplexity":"LOW","attackVector":"PHYSICAL","availabilityImpact":"HIGH","baseScore":7.4,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"LOW","scope":"CHANGED","userInteraction":"NONE","vectorString":"CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","version":"3.0"}}],"problemTypes":[{"descriptions":[{"description":"Parsing a Python module by executing the module.","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2019-05-07T19:01:06.000Z","orgId":"cc1ad9ee-3454-478d-9317-d3e869d708bc","shortName":"canonical"},"references":[{"tags":["x_refsource_MISC"],"url":"https://launchpad.net/apport/trunk/2.19.2"},{"tags":["x_refsource_MISC"],"url":"https://usn.ubuntu.com/2782-1/"}],"source":{"defect":["https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1507480"],"discovery":"EXTERNAL"},"title":"Apport privilege escalation through Python module imports","x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"security@ubuntu.com","DATE_PUBLIC":"2015-10-27T00:00:00.000Z","ID":"CVE-2015-1341","STATE":"PUBLIC","TITLE":"Apport privilege escalation through Python module imports"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Apport","version":{"version_data":[{"affected":"<","version_affected":"<","version_value":"2.0.1-0ubuntu17.13"},{"affected":"<","version_affected":"<","version_value":"2.19.1-0ubuntu4"},{"affected":"<","version_affected":"<","version_value":"2.17.2-0ubuntu1.7"},{"affected":"<","version_affected":"<","version_value":"2.14.1-0ubuntu3.18"},{"affected":"<","version_affected":"<","version_value":"2.19.2"}]}}]},"vendor_name":"Ubuntu"}]}},"credit":[{"lang":"eng","value":"Gabriel Campana"}],"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function _python_module_path."}]},"impact":{"cvss":{"attackComplexity":"LOW","attackVector":"PHYSICAL","availabilityImpact":"HIGH","baseScore":7.4,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"LOW","scope":"CHANGED","userInteraction":"NONE","vectorString":"CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","version":"3.0"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Parsing a Python module by executing the module."}]}]},"references":{"reference_data":[{"name":"https://launchpad.net/apport/trunk/2.19.2","refsource":"MISC","url":"https://launchpad.net/apport/trunk/2.19.2"},{"name":"https://usn.ubuntu.com/2782-1/","refsource":"MISC","url":"https://usn.ubuntu.com/2782-1/"}]},"source":{"defect":["https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1507480"],"discovery":"EXTERNAL"}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-06T04:40:18.678Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://launchpad.net/apport/trunk/2.19.2"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://usn.ubuntu.com/2782-1/"}]}]},"cveMetadata":{"assignerOrgId":"cc1ad9ee-3454-478d-9317-d3e869d708bc","assignerShortName":"canonical","cveId":"CVE-2015-1341","datePublished":"2019-04-22T15:35:59.329Z","dateReserved":"2015-01-22T00:00:00.000Z","dateUpdated":"2024-09-16T23:45:46.716Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}