CVE-2020-11933 local snapd exploit through cloud-init

cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass intended security...

CVE-2020-11933

The CVE-2020-11933 issue affects Ubuntu Core 16/18 when cloud-init is managed by snapd. It describes cloud-init running with no boot-time restrictions, enabling a physical attacker to craft cloud-init user-data/meta-data on external media to perform arbitrary changes and bypass security controls ...

Ubuntu: Security Advisory (USN-4424-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-11933

cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass intended security...

Unspecified Vulnerability in WinMagic SecureDoc SDDisk2k.sys

WINMAGIC SecureDoc is a data security and disk encryption solution from WINMAGIC Canada. A security vulnerability in the SDDisk2k.sys driver in WINMAGIC SecureDoc 8.5 and earlier versions, which stems from a lack of pointer validation in the IOCTL scheduler, can be exploited by a local attacker t...

Unspecified vulnerability in WINMAGIC SecureDoc SDDisk2k.sys (CNVD-2021-25668)

WINMAGIC SecureDoc is a data security and disk encryption solution from WINMAGIC Canada. A security vulnerability in the SDDisk2k.sys driver in WINMAGIC SecureDoc v8.5 and earlier versions can be exploited by a local attacker to execute code with elevated privileges via ＼.SecureDocDevice...

Exploit for Insertion of Sensitive Information into Log File in Canonical Subiquity

CVE-2020-11932 :bug::mag: Check CVE-2020-11932 and test for h...

CVE-2020-11932

It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered...

CVE-2020-11932

It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered...

UBUNTU-CVE-2020-11932

It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered...

7 New Flaws Affect All Thunderbolt-equipped Computers Sold in the Last 9 Years

A cybersecurity researcher today uncovers a set of 7 new unpatchable hardware vulnerabilities that affect all desktops and laptops sold in the past 9 years with Thunderbolt, or Thunderbolt-compatible USB-C ports. Collectively dubbed 'ThunderSpy,' the vulnerabilities can be exploited in 9 realisti...

EulerOS 2.0 SP8 : ceph (EulerOS-SA-2020-1285)

According to the version of the ceph packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It was found Ceph versions before 13.2.4 that authenticated ceph users with read only permissions could steal dm-crypt encryption keys used in ceph...

ceph: authenticated user with read only permissions can steal dm-crypt / LUKS key

It was found that authenticated ceph user with read only permissions could steal dm-crypt encryption keys used in ceph disk encryption...

ceph: authenticated user with read only permissions can steal dm-crypt / LUKS key

It was found that authenticated ceph user with read only permissions could steal dm-crypt encryption keys used in ceph disk encryption...

CVE-2019-13179

Calamares versions 3.1 through 3.2.10 copies a LUKS encryption keyfile from /cryptokeyfile.bin mode 0600 owned by root to /boot within a globally readable initramfs image with insecure permissions, which allows this originally protected file to be read by any user, thereby disclosing decryption...

DEBIAN-CVE-2019-13179

Calamares versions 3.1 through 3.2.10 copies a LUKS encryption keyfile from /cryptokeyfile.bin mode 0600 owned by root to /boot within a globally readable initramfs image with insecure permissions, which allows this originally protected file to be read by any user, thereby disclosing decryption...

CVE-2019-13179

Calamares versions 3.1 through 3.2.10 copies a LUKS encryption keyfile from /cryptokeyfile.bin mode 0600 owned by root to /boot within a globally readable initramfs image with insecure permissions, which allows this originally protected file to be read by any user, thereby disclosing decryption...

CVE-2019-13179

Calamares versions 3.1 through 3.2.10 copies a LUKS encryption keyfile from /cryptokeyfile.bin mode 0600 owned by root to /boot within a globally readable initramfs image with insecure permissions, which allows this originally protected file to be read by any user, thereby disclosing decryption...

CVE-2019-13179

Calamares versions 3.1 through 3.2.10 copies a LUKS encryption keyfile from /cryptokeyfile.bin mode 0600 owned by root to /boot within a globally readable initramfs image with insecure permissions, which allows this originally protected file to be read by any user, thereby disclosing decryption...

UBUNTU-CVE-2019-13178

modules/luksbootkeyfile/main.py in Calamares versions 3.1 through 3.2.10 has a race condition between the time when the LUKS encryption keyfile is created and when secure permissions are set...