CVE-2020-11936

Exp

gdbus setgid privilege escalation

Published: 2025-01-31 Last update: 2025-08-26 Assigner: [email protected] Source: [email protected]
NVD Status:AnalyzedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2020-11936 is rated Exploit Available (50/100): CVSS Low severity, with low exploitation likelihood (EPSS 0.33%). 1 public exploit reference(s) are indexed (Exploit-DB). Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2020-11936

EDB-ID Source Kind Published Link
nvd_ref exploit_tag Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2020-11936

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 0.16% 0.33% +0.16%
2 2026-03-11 0.05% 0.16% +0.11%
3 2025-10-06 0.05%

Full EPSS history (6 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2020-11936

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
3.1 3.1 LOW
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N Click to expand
Attack vector (AV:N)
Could be attacked over the internet or any normal routed network—not just someone sitting at the machine.
Attack complexity (AC:H)
Even with access, the exploit needs extra luck, timing, or a fussy environment to actually work.
Privileges required (PR:L)
A normal user session is enough; they don’t have to be admin.
User interaction (UI:N)
Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U)
Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:L)
Some sensitive info could get out, but not a total data dump.
Integrity (I:N)
Data isn’t meaningfully altered or forged.
Availability (A:N)
Service keeps running; no real outage angle.
 1.6 1.4 [email protected]

Weakness enumeration for CVE-2020-11936

OS Trackers for CVE-2020-11936

vendor priority summary link
suse low https://www.suse.com/security/cve/CVE-2020-11936/
ubuntu medium CVE-2020-11936 medium priority: Ubuntu including 1 source packages (apport), 6 status rows across 6 suites (bionic, eoan, focal, trusty, upstream, xenial): released 4, ignored 1, needs-triage 1. https://ubuntu.com/security/CVE-2020-11936

Affected software / configurations for CVE-2020-11936

Vendor Product Version Raw CPE
canonical apport 2.20.1-0ubuntu1 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu1:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.1 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.1:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.2 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.2:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.4 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.4:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.5 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.5:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.6 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.6:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.7 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.7:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.8 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.8:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.9 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.9:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.10 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.10:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.12 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.12:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.13 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.13:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.14 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.14:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.15 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.15:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.16 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.16:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.17 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.17:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.18 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.18:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.19 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.19:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.20 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.20:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.21 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.21:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.22 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.22:*:*:*:*:*:*:*
canonical apport 2.20.1-0ubuntu2.23 cpe:2.3:a:canonical:apport:2.20.1-0ubuntu2.23:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu1 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu1:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu2 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu2:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu3 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu3:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu4 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu4:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu5 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu5:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu6 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu6:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.1 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.1:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.2 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.2:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.3 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.3:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.4 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.4:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.5 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.5:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.6 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.6:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.7 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.7:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.8 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.8:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.9 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.9:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.10 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.10:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.11 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.11:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.12 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.12:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.13 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.13:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.14 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.14:*:*:*:*:*:*:*
canonical apport 2.20.9-0ubuntu7.15 cpe:2.3:a:canonical:apport:2.20.9-0ubuntu7.15:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu8 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu8:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu9 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu9:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu10 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu10:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu11 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu11:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu12 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu12:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu13 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu13:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu14 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu14:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu15 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu15:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu16 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu16:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu17 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu17:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu18 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu18:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu19 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu19:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu20 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu20:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu21 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu21:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu22 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu22:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu23 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu23:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu24 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu24:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu25 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu25:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu26 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu26:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.2 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.2:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.3 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.3:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.4 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.4:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.5 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.5:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.7 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.7:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.8 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.8:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.9 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.9:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.10 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.10:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.11 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.11:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.12 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.12:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.13 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.13:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.14 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.14:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.16 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.16:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.17 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.17:*:*:*:*:*:*:*
canonical apport 2.20.11-0ubuntu27.18 cpe:2.3:a:canonical:apport:2.20.11-0ubuntu27.18:*:*:*:*:*:*:*

References for CVE-2020-11936

cvelogic Threat Intelligence