Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-32462

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. in versions before 1.10.9, 1.12.9, 1.14.6, and 1.15.8, a...

8.4CVSS7.7AI score0.00512EPSS
Exploits1References3
Amazon
Amazon
added 2024/05/13 12:0 a.m.7 views

Important: flatpak

Issue Overview: Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. in versions before 1.10.9, 1.12.9, 1.14.6, and 1.15.8, a malicious or compromised Flatpak app could execute arbitrary code outside its sandbox. Normally, the --command argument of...

8.4CVSS8.3AI score0.00512EPSS
Exploits1
OSV
OSV
added 2024/04/18 6:15 p.m.3 views

UBUNTU-CVE-2024-32462

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. in versions before 1.10.9, 1.12.9, 1.14.6, and 1.15.8, a malicious or compromised Flatpak app could execute arbitrary code outside its sandbox. Normally, the --command argument of flatpak run...

8.4CVSS6.2AI score0.00512EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2021/04/06 9:43 a.m.5 views

flatpak: "file forwarding" feature can be used to gain unprivileged access to files

A sandbox escape flaw was found in the way flatpak handled special tokens in ".desktop" files. This flaw allows an attacker to gain access to files that are not ordinarily allowed by the app's permissions. The highest threat from this vulnerability is to confidentiality and integrity...

8.2CVSS5.7AI score0.01546EPSS
Exploits0References5
OSV
OSV
added 2019/08/31 6:20 p.m.4 views

OPENSUSE-SU-2019:2038-1 Security update for flatpak

This update for flatpak fixes the following issues: Security issues fixed: - CVE-2019-8308: Fixed a potential sandbox escape via /proc bsc1125431. - CVE-2019-11460: Fixed a compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl bsc1133043...

9CVSS8.5AI score0.01952EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2018/02/07 12:0 a.m.15 views

Fedora 27 : flatpak (2018-bd651734da)

This is a security fix release that fixes a sandbox escape in the flatpak dbus proxy. This issue was found by Gabriel Campana of The Google Security Team. Major changes in 0.10.3 - Fix dbus proxy vulnerability in authentication phase - Make permission handling ignore unknown permissions for...

5.5AI score
Exploits0References1
Rows per page
Query Builder