PackageKit provided detailed error messages to unprivileged callers that exposed information about file presence and mimetype of files that the user would be unable to determine on its own. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
Information Disclosure
Packagekit
Ubuntu Linux
NVD
CVSS 3.1
3.3
EPSS
0.5%