CVE-2020-16123

low-risk

Published 2020-12-04

An Ubuntu-specific patch in PulseAudio created a race condition where the snap policy module would fail to identify a client connection from a snap as coming from a snap if SCM_CREDENTIALS were missing, allowing the snap to connect to PulseAudio without proper confinement. This could be exploited by an attacker to expose sensitive information. Fixed in 1:13.99.3-1ubuntu2, 1:13.99.2-1ubuntu2.1, 1:13.99.1-1ubuntu3.8, 1:11.1-1ubuntu7.11, and 1:8.0-0ubuntu3.15.

Do I need to act?

0.09% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 4.4/10 Medium

LOCAL / HIGH complexity

Affected Products (4)

Ubuntu Linux

Affected Vendors

Canonical

References (4)

Exploit https://launchpad.net/bugs/1895928

Patch https://ubuntu.com/USN-4640-1

Exploit https://launchpad.net/bugs/1895928

Patch https://ubuntu.com/USN-4640-1

/ 100

low-risk

Severity 11/34 · Low

Exploitability 0/34 · Minimal

Exposure 10/34 · Low