Canonical Accountsservice — known CVE vulnerabilities
Every CVE whose affected-product data names Canonical Accountsservice, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-3297 — CVSS 8.1 (high): In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus…
CVE-2021-3939 — CVSS 7.8 (high): Ubuntu-specific modifications to accountsservice (in patch file debian/patches/0010-set-language.patch) caused the fallback_locale…
CVE-2011-4406 — CVSS 3.6 (low): The Ubuntu AccountsService package before 0.6.14-1git1ubuntu1.1 does not properly drop privileges when changing language settings, which…