Lucene search
K

373 matches found

CNNVD
CNNVD
added 2024/07/25 12:0 a.m.4 views

snapd 安全漏洞

snapd is a cross-platform package management tool open-sourced by snapcore. Enables systems to use .snap files. A security vulnerability exists in snapd versions prior to 2.62 that stems from a failure to properly check the target of a symbolic link and could allow unprivileged users to access...

7.3CVSS6.2AI score0.00228EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/07/25 12:0 a.m.6 views

snapd 安全漏洞

snapd is a cross-platform package management tool open-sourced by snapcore. Enables systems to use .snap files. A security vulnerability exists in snapd versions prior to 2.62 that stems from a failure to properly check file types. An attacker exploiting this vulnerability could result in a denia...

6.6CVSS6.2AI score0.00212EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/07/01 12:0 a.m.22 views

CVE-2024-1724

In snapd versions prior to 2.62, when using AppArmor for enforcement of sandbox permissions, snapd failed to restrict writes to the $HOME/bin path. In Ubuntu, when this path exists, it is automatically added to the users PATH. An attacker who could convince a user to install a malicious snap whic...

8.2CVSS7.2AI score0.00306EPSS
Exploits1References5
OSV
OSV
added 2024/07/01 12:0 a.m.3 views

UBUNTU-CVE-2024-1724

In snapd versions prior to 2.62, when using AppArmor for enforcement of sandbox permissions, snapd failed to restrict writes to the $HOME/bin path. In Ubuntu, when this path exists, it is automatically added to the users PATH. An attacker who could convince a user to install a malicious snap whic...

8.2CVSS5.9AI score0.00306EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/07/01 12:0 a.m.5 views

PT-2024-18253 · Canonical +2 · Snapd +3

Name of the Vulnerable Software and Affected Versions: snapd versions prior to 2.62 Description: The issue arises when using AppArmor for enforcement of sandbox permissions in snapd. It failed to restrict writes to the $HOME/bin path. In Ubuntu, when this path exists, it is automatically added to...

8.2CVSS6.9AI score0.00306EPSS
Exploits1References37
OSV
OSV
added 2024/06/21 8:15 p.m.11 views

CVE-2020-27352

When generating the systemd service units for the docker snap and other similar snaps, snapd does not specify Delegate=yes - as a result systemd will move processes from the containers created and managed by these snaps into the cgroup of the main daemon within the snap itself when reloading syst...

8.8CVSS6.6AI score0.00256EPSS
Exploits1References3
NVD
NVD
added 2024/06/21 8:15 p.m.46 views

CVE-2020-27352

When generating the systemd service units for the docker snap and other similar snaps, snapd does not specify Delegate=yes - as a result systemd will move processes from the containers created and managed by these snaps into the cgroup of the main daemon within the snap itself when reloading syst...

9.3CVSS0.00256EPSS
Exploits1References3
OSV
OSV
added 2024/06/21 8:15 p.m.1 views

DEBIAN-CVE-2020-27352

When generating the systemd service units for the docker snap and other similar snaps, snapd does not specify Delegate=yes - as a result systemd will move processes from the containers created and managed by these snaps into the cgroup of the main daemon within the snap itself when reloading syst...

8.8CVSS8.4AI score0.00256EPSS
Exploits1References1
CVE
CVE
added 2024/06/21 8:6 p.m.118 views

CVE-2020-27352

The CVE-2020-27352 issue affects snapd (e.g., the docker snap and similar snaps) where the systemd service units for these snaps are generated without setting Delegate=yes. This omission allows systemd to move processes from containers managed by the snap into the cgroup of the snap’s main daemon...

9.3CVSS9.2AI score0.00256EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/21 8:6 p.m.8 views

CVE-2020-27352

When generating the systemd service units for the docker snap and other similar snaps, snapd does not specify Delegate=yes - as a result systemd will move processes from the containers created and managed by these snaps into the cgroup of the main daemon within the snap itself when reloading syst...

9.3CVSS7.1AI score0.00256EPSS
Exploits1References3
OSV
OSV
added 2024/06/14 1:41 p.m.22 views

GO-2024-2906 CVE-2024-5138 in github.com/snapcore/snapd

CVE-2024-5138 in github.com/snapcore/snapd...

8.1CVSS7.9AI score0.00826EPSS
Exploits1References3
Veracode
Veracode
added 2024/06/07 6:59 a.m.18 views

Privilege Escalation

github.com/snapcore/snapd is vulnerable to Privilege Escalation. The vulnerability is due to improper command-line argument parsing, allowing an unprivileged user to trigger actions that require administrator privileges...

8.1CVSS6.4AI score0.00826EPSS
Exploits1References5Affected Software2
OSV
OSV
added 2024/06/05 3:10 p.m.18 views

GO-2024-2468 snapd Race Condition vulnerability in github.com/snapcore/snapd

snapd Race Condition vulnerability in github.com/snapcore/snapd. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability scanners, please suggest an...

7.8CVSS6.9AI score0.00384EPSS
Exploits2References7
OSV
OSV
added 2024/05/31 9:30 p.m.22 views

GHSA-JRR7-64M9-X984 Duplicate Advisory: CVE-2024-5138: snapd snapctl auth bypass

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-p9v8-q5m4-pf46. This link is maintained to preserve external references. Original Description The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privilege...

8.1CVSS8AI score0.00826EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2024/05/31 9:30 p.m.15 views

Duplicate Advisory: CVE-2024-5138: snapd snapctl auth bypass

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-p9v8-q5m4-pf46. This link is maintained to preserve external references. Original Description The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privilege...

8.1CVSS7.1AI score0.00826EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2024/05/31 9:15 p.m.4 views

DEBIAN-CVE-2024-5138

The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line arguments, allowing an unprivileged user to trigger an authorised action on behalf of...

8.1CVSS7.8AI score0.00826EPSS
Exploits1References1
NVD
NVD
added 2024/05/31 9:15 p.m.38 views

CVE-2024-5138

The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line arguments, allowing an unprivileged user to trigger an authorised action on behalf of...

8.1CVSS6.5AI score0.00826EPSS
Exploits1References4
OSV
OSV
added 2024/05/31 9:2 p.m.32 views

CVE-2024-5138

The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line arguments, allowing an unprivileged user to trigger an authorised action on behalf of...

8.1CVSS6.9AI score0.00826EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2024/05/31 9:2 p.m.16 views

CVE-2024-5138

The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line arguments, allowing an unprivileged user to trigger an authorised action on behalf of...

6.8AI score0.00826EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/05/31 9:2 p.m.94 views

CVE-2024-5138

The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line arguments, allowing an unprivileged user to trigger an authorised action on behalf of...

6.5AI score0.00826EPSS
Exploits1References4
Rows per page
Query Builder