Lucene search
+L

252 matches found

SUSE CVE
SUSE CVE
added 2023/06/26 1:40 a.m.5 views

SUSE CVE-2019-11461

An issue was discovered in GNOME Nautilus 3.30 prior to 3.30.6 and 3.32 prior to 3.32.1. A compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl to push characters into the input buffer of the thumbnailer's controlling terminal, allowing...

4.8CVSS7.2AI score0.00348EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/05/03 12:0 a.m.38 views

Debian DSA-5397-1 : wpewebkit - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5397 advisory. - Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

8.8CVSS8.4AI score0.27076EPSS
Exploits1References13
SUSE CVE
SUSE CVE
added 2023/02/15 4:56 a.m.5 views

SUSE CVE-2016-8659

Bubblewrap before 0.1.3 sets the PRSETDUMPABLE flag, which might allow local users to gain privileges by attaching to the process, as demonstrated by sending commands to a PrivSep socket...

7CVSS7.2AI score0.00399EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:50 a.m.6 views

SUSE CVE-2017-5226

When executing a program via the bubblewrap sandbox, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the sandbox...

7.8CVSS8.7AI score0.03169EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:12 a.m.4 views

SUSE CVE-2019-11460

An issue was discovered in GNOME gnome-desktop 3.26, 3.28, and 3.30 prior to 3.30.2.2, and 3.32 prior to 3.32.1.1. A compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl to push characters into the input buffer of the thumbnailer's...

4.8CVSS7.2AI score0.01952EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:11 a.m.7 views

SUSE CVE-2019-12439

bubblewrap.c in Bubblewrap before 0.3.3 misuses temporary directories in /tmp as a mount point. In some particular configurations related to XDGRUNTIMEDIR, a local attacker may abuse this flaw to prevent other users from executing bubblewrap or potentially execute code...

7CVSS6.8AI score0.00494EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:3 a.m.6 views

SUSE CVE-2020-5291

Bubblewrap bwrap before version 0.4.1, if installed in setuid mode and the kernel supports unprivileged user namespaces, then the bwrap --userns2 option can be used to make the setuid process keep running as root while being traceable. This can in turn be used to gain root permissions. Note that...

7.8CVSS7.1AI score0.00907EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:58 a.m.5 views

SUSE CVE-2020-13753

The bubblewrap sandbox of WebKitGTK and WPE WebKit, prior to 2.28.3, failed to properly block access to CLONENEWUSER and the TIOCSTI ioctl. CLONENEWUSER could potentially be used to confuse xdg-desktop-portal, which allows access outside the sandbox. TIOCSTI can be used to directly execute comman...

6.3CVSS7.3AI score0.02917EPSS
Exploits0References13
Rockylinux
Rockylinux
added 2022/05/17 8:2 a.m.14 views

new packages: bubblewrap

An update is available for bubblewrap. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

1.7AI score
Exploits0
Redos
Redos
added 2022/03/01 12:0 a.m.48 views

ROS-20220301-01

Vulnerability in the Bubblewrap sandbox tool, related to incorrect handling of the number of parameter of call parameters in the pkexec setuid binary. Exploitation of the vulnerability could allow an attacker to create environment variables so that they are processed and executed by pkexec, and...

7.8CVSS8.1AI score0.94921EPSS
Exploits152
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2018-0143)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.00412EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/01/27 12:0 a.m.6 views

The vulnerability of the Polkit library and the Bubblewrap toolset, caused by buffer overflows in the stack, allows attackers to elevate their privileges to superuser level.

The vulnerability of the Polkit library arises due to an overflow in the buffer on the stack. Exploiting this vulnerability can allow an attacker to elevate their privileges to a superuser level...

7.8CVSS7.1AI score0.94921EPSS
Exploits152References29Affected Software10
Tenable Nessus
Tenable Nessus
added 2022/01/26 12:0 a.m.49 views

SUSE SLED15: libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc (SUSE-SU-2022:0182-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0182-1 advisory. - Update to version 2.34.3 bsc1194019. - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced...

10CVSS6.8AI score0.13486EPSS
Exploits2References88
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2019:1826-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.00494EPSS
Exploits0References2
Veracode
Veracode
added 2021/04/29 1:13 p.m.105 views

Privilege Escalation

Bubblewrap bwrap is vulnerable to privilege escalation. If installed in setuid mode and the kernel supports unprivileged user namespaces, then the bwrap --userns2 option can be used to make the setuid process keep running as root while being traceable. This can in turn be used to gain root...

7.8CVSS2.9AI score0.00907EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/12/24 12:0 a.m.9 views

The vulnerability of the Bubblewrap application, related to insecure management of privileges, allows a perpetrator to compromise the confidentiality and integrity of the protected information.

The vulnerability of the Bubblewrap application is related to insecure handling of privileges. Exploiting this vulnerability allows an attacker operating remotely to compromise the confidentiality and integrity of the protected information...

7.7CVSS7.3AI score0.00907EPSS
Exploits0References6Affected Software3
Microsoft CVE
Microsoft CVE
added 2020/09/25 7:0 a.m.7 views

Privilege escalation in setuid mode via user namespaces in Bubblewrap

...

8.5CVSS7AI score0.00907EPSS
Exploits0
CBLMariner
CBLMariner
added 2020/09/09 6:9 a.m.41 views

CVE-2020-5291 affecting package bubblewrap 0.3.0-5

CVE-2020-5291 affecting package bubblewrap 0.3.0-5. A patched version of the package is available...

8.5CVSS7.5AI score0.00907EPSS
Exploits0
CBLMariner
CBLMariner
added 2020/09/09 6:9 a.m.26 views

CVE-2019-12439 affecting package bubblewrap 0.3.0-5

CVE-2019-12439 affecting package bubblewrap 0.3.0-5. A patched version of the package is available...

7.8CVSS7.5AI score0.00494EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/08/31 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for bubblewrap (EulerOS-SA-2020-1838)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.1AI score0.00907EPSS
Exploits0References2
Rows per page
Query Builder