Lucene search
+L

8 matches found

OSV
OSV
added 2020/07/29 5:15 p.m.23 views

CVE-2020-11933

cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass intended security...

6.8CVSS6.7AI score
Exploits0References2
Cvelist
Cvelist
added 2020/07/29 4:25 p.m.50 views

CVE-2020-11933 local snapd exploit through cloud-init

cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass intended security...

7.3CVSS7AI score0.00217EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/07/16 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-4424-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS6.7AI score0.00365EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/07/16 12:0 a.m.42 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : snapd vulnerabilities (USN-4424-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4424-1 advisory. It was discovered that cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices ran on every boot without...

7.3CVSS6.6AI score0.00365EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/07/16 12:0 a.m.34 views

Fedora 31 : snapd (2020-ccb155ea2c)

Update to v2.45.2 to fix CVE-2020-11933 and CVE-2020-11934 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

7.3CVSS6.2AI score0.00365EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/07/16 12:0 a.m.33 views

Fedora 32 : snapd (2020-7685deba9b)

Update to v2.45.2 to fix CVE-2020-11933 and CVE-2020-11934 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

7.3CVSS6.2AI score0.00365EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2020/07/15 2:49 p.m.94 views

USN-4424-1: snapd vulnerabilities

It was discovered that cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices ran on every boot without restrictions. A physical attacker could exploit this to craft cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass intende...

7.3CVSS6.6AI score0.00365EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2020/07/15 12:0 p.m.31 views

CVE-2020-11933

cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass intended security...

7.3CVSS6.8AI score0.00217EPSS
Exploits0References2
Rows per page
Query Builder