EUVD-2017-15012

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Firejail before certain versions allows sandbox-escape attacks via symlink and --private option

Reporter	Title	Published	Views	Family All 10
CNVD	Firejail Incomplete Fix Local Elevation of Privilege Vulnerability	13 Feb 201700:00	–	cnvd
CVE	CVE-2017-5940	9 Feb 201718:00	–	cve
Cvelist	CVE-2017-5940	9 Feb 201718:00	–	cvelist
Debian CVE	CVE-2017-5940	9 Feb 201718:00	–	debiancve
Tenable Nessus	GLSA-201702-03 : Firejail: Privilege escalation	10 Feb 201700:00	–	nessus
Gentoo Linux	Firejail: Privilege escalation	9 Feb 201700:00	–	gentoo
NVD	CVE-2017-5940	9 Feb 201718:59	–	nvd
OSV	DEBIAN-CVE-2017-5940	9 Feb 201718:59	–	osv
Prion	Code injection	9 Feb 201718:59	–	prion
UbuntuCve	CVE-2017-5940	9 Feb 201718:59	–	ubuntucve

[
  {
    "enisaIdVendor": [
      {
        "id": "63fa3c65-93e6-3ec9-ba31-a74a63c85095",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "a23b30a4-2a53-3af4-837b-9b2d238c9ae4",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
github	www.github.com/netblue30/firejail/commit/b8a4ff9775318ca5e679183884a6a63f3da8f863
security	www.security.gentoo.org/glsa/201702-03
github	www.github.com/netblue30/firejail/commit/38d418505e9ee2d326557e5639e8da49c298858f
firejail	www.firejail.wordpress.com/download-2/release-notes/
openwall	www.openwall.com/lists/oss-security/2017/01/31/16
github	www.github.com/netblue30/firejail/commit/903fd8a0789ca3cc3c21d84cd0282481515592ef
securityfocus	www.securityfocus.com/bid/96221
nvd	www.nvd.nist.gov/vuln/detail/CVE-2017-5940
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

8.7High risk

Vulners AI Score8.7

CVSS 38.8

CVSS 24.6

EPSS0.00079