CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Positive Technologies•added 2026/01/01 12:0 a.m.•2 views

PT-2026-25897

Name of the Vulnerable Software and Affected Versions Ubuntu 16.04 LTS Ubuntu 18.04 LTS Ubuntu 20.04 LTS Ubuntu 22.04 LTS Ubuntu 24.04 LTS Ubuntu 25.10 Ubuntu 26.04 Dev Description A local privilege escalation issue exists in snapd due to an unintended interaction between snap-confine the sandbox...

7.8CVSS7.8AI score0.00009EPSS

Exploits6References138

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2021-33996

Malicious code in bioql PyPI...

8.2CVSS8AI score0.00088EPSS

Exploits1References6

SUSE CVE•added 2023/02/15 4:12 a.m.•1 views

SUSE CVE-2019-11503

snap-confine as included in snapd before 2.39 did not guard against symlink races when performing the chdir to the current working directory of the calling user, aka a "cwd restore permission bypass."...

7.5CVSS7.4AI score0.00448EPSS

Exploits1References4

OSV•added 2022/12/01 1:8 a.m.•1 views

USN-5753-1 snapd vulnerability

The Qualys Research Team discovered that a race condition existed in the snapd snap-confine binary when preparing the private /tmp mount for a snap. A local attacker could possibly use this issue to escalate privileges and execute arbitrary code...

7.8CVSS7.3AI score0.00059EPSS

Exploits2References2

OSV•added 2022/11/30 12:0 a.m.•2 views

UBUNTU-CVE-2022-3328

Race condition in snap-confine's mustmkdirandopenwithperms...

7.8CVSS7.2AI score0.00059EPSS

Exploits2References3

Snyk•added 2022/02/18 2:30 p.m.•3 views

Access Restriction Bypass

Overview Affected versions of this package are vulnerable to Access Restriction Bypass due to failure to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layou...

8.2CVSS5.7AI score0.00088EPSS

Exploits1References2

OSV•added 2022/02/18 1:7 a.m.•2 views

USN-5292-2 snapd vulnerabilities

USN-5292-1 fixed vulnerabilities in snapd. This update provides the corresponding update for the riscv64 architecture. Original advisory details: James Troup discovered that snap did not properly manage the permissions for the snap directories. A local attacker could possibly use this issue to...

8.8CVSS7AI score0.01065EPSS

Exploits5References5

NVD•added 2022/02/17 11:15 p.m.•14 views

CVE-2021-4120

snapd 2.54.2 fails to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layout declarations and hence escape strict snap confinement. Fixed in snapd versions...

8.2CVSS0.00088EPSS

Exploits1References5