Flatpak Security Vulnerabilities and Issues — Flatpak CVE List

FlatpakFlatpak

15 matches found

CVE•added 2021/01/14 7:40 p.m.•310 views

CVE-2021-21261

CVE-2021-21261 is a sandbox-escape flaw in the Flatpak portal (flatpak-portal) that, in vulnerable versions prior to 1.8.5 and 1.10.0, passes caller-specified environment variables to host non-sandboxed processes launched via flatpak run. This can enable a malicious or compromised Flatpak app to ...

8.8CVSS8.3AI score0.0057EPSS

CVE•added 2021/10/08 12:0 a.m.•267 views

CVE-2021-41133

CVE-2021-41133 affects Flatpak prior to versions 1.10.4 and 1.12.0. The issue allows Flatpak apps with direct AF_UNIX socket access (e.g., Wayland, Pipewire) to abuse VFS-related syscalls not blocked by the denylists in seccomp, manipulating /.flatpak-info or removing it to trick host portals and...

8.8CVSS7AI score0.00406EPSS

CVE•added 2024/08/15 6:32 p.m.•235 views

CVE-2024-42472

CVE-2024-42472 affects Flatpak before 1.14.0/1.15.10 and allows a malicious or compromised Flatpak app using persistent directories to access or write files outside the sandbox. The root cause is a symlink-following issue when mounting persistent (persist) directories, causing the bind mount to f...

10CVSS9.3AI score0.01283EPSS

CVE•added 2019/02/12 11:0 p.m.•201 views

CVE-2019-8308

CVE-2019-8308 affects Flatpak before 1.0.7 and 1.1.x and 1.2.x before 1.2.3, where the /proc is exposed in the apply_extra sandbox, enabling a local attacker to modify a host-side executable. CVSS v3 base score 8.2 (HIGH) with LOCAL attack vector, LOW privileges required, UI required, and impact ...

8.2CVSS7.8AI score0.00466EPSS

CVE•added 2022/01/13 12:0 a.m.•195 views

CVE-2022-21682

CVE-2022-21682 (Flatpak-builder path traversal) Affects Flatpak and its builder prior to a fix: versions before 1.12.3 and 1.10.6. The vulnerability arises when flatpak-builder applies finish-args at finalization, allowing the build directory to inherit permissions declared in the manifest; with ...

7.7CVSS6.8AI score0.01712EPSS

CVE•added 2022/01/12 12:0 a.m.•194 views

CVE-2021-43860

CVE-2021-43860 (Flatpak) affects Flatpak prior to 1.12.3 and 1.10.6, where permissions shown to users at install time may not match runtime permissions due to a null byte in app metadata. Malicious apps can grant themselves hidden permissions because xa.metadata is read from commit metadata as a ...

8.6CVSS8.1AI score0.01346EPSS

CVE•added 2021/03/11 12:0 a.m.•191 views

CVE-2021-21381

Flatpak before 1.10.2 is vulnerable to a sandbox-escape where an attacker can abuse the Exec field in a .desktop file by using tokens like @@ or @@u, causing the user’s files to be exposed to the Flatpak app. The vulnerability, affecting Flatpak versions 0.9.4 through 1.10.1, is fixed in 1.10.2. ...

8.2CVSS7.3AI score0.01546EPSS

CVE•added 2019/03/26 1:40 p.m.•150 views

CVE-2019-10063

CVE-2019-10063 affects Flatpak before 1.0.8, 1.1.x before 1.2.4, and 1.3.x before 1.3.1, enabling a sandbox bypass via TIOCSTI in 64‑bit platforms. The prior fix (addressing CVE-2017-5226) used a seccomp filter to block TIOCSTI, but on 64‑bit systems an ioctl with TIOCSTI in the low 32 bits and a...

9CVSS7.3AI score0.01909EPSS

CVE•added 2023/03/16 3:51 p.m.•125 views

CVE-2023-28100

CVE-2023-28100 affects Flatpak on Linux prior to versions 1.10.8, 1.12.8, 1.14.4, and 1.15.4. The root cause involves using the TIOCLINUX ioctl on Linux virtual consoles (e.g., /dev/tty1) which can allow a Flatpak app running in a console to copy text from the console into the command buffer and ...

10CVSS7.9AI score0.00871EPSS

CVE•added 2023/03/16 3:55 p.m.•125 views

CVE-2023-28101

Summary of CVE-2023-28101 : Flatpak before versions 1.10.8, 1.12.8, 1.14.4, and 1.15.4 contains a permissions-elevation flaw. If an attacker publishes a Flatpak app with elevated permissions, they can hide those permissions from users of the flatpak(1) CLI by setting other permissions to crafted ...

5CVSS6.6AI score0.00879EPSS

CVE•added 2024/04/18 6:11 p.m.•121 views

CVE-2024-32462

CVE-2024-32462 affects Flatpak releases prior to 1.15.8, 1.10.9, 1.12.9, and 1.14.6. The issue arises when a Flatpak app passes arbitrary bwrap arguments (eg, --bind) to the --command used by flatpak run, which can be constructed from a portal call (org.freedesktop.portal.Background.RequestBackgr...

8.4CVSS7.3AI score0.00512EPSS

CVE•added 2018/02/02 2:0 p.m.•90 views

CVE-2018-6560

CVE-2018-6560 affects Flatpak’s D-Bus proxy (dbus-proxy/flatpak-proxy.c) in Flatpak versions prior to 0.8.9, and in 0.9.x and 0.10.x prior to 0.10.3. The issue is caused by whitespace handling in the proxy not matching the daemon, enabling crafted D‑Bus messages to escape the sandbox. Practical i...

8.8CVSS8.4AI score0.0042EPSS

CVE•added 2017/06/21 3:0 p.m.•78 views

CVE-2017-9780

CVE-2017-9780 affects Flatpak prior to 0.8.7. A third‑party app repository could supply malicious apps with files that have insecure permissions (e.g., setuid or world‑writeable), causing deployed files to run with elevated privileges or write to world‑writable locations. The worst‑case involves ...

7.8CVSS7.4AI score0.00355EPSS

CVE•added 2026/04/07 9:27 p.m.•35 views

CVE-2026-34078

Flatpak before 1.16.4 is vulnerable: the portal accepts paths in sandbox-expose options that can be app-controlled symlinks to arbitrary host paths, and Flatpak run mounts the resolved host path in the sandbox. This can give apps access to all host files and may be a primitive for host-context co...

10CVSS6.4AI score0.01636EPSS

CVE•added 2026/04/07 9:29 p.m.•23 views

CVE-2026-34079

Flatpak (Linux application sandboxing) before version 1.16.4 had a flaw in ld.so cache cleanup: it could delete arbitrary files on the host if the app-controlled path to outdated cache wasn't properly verified within the cache directory. The vulnerability is fixed in 1.16.4. Impact is described a...

8.7CVSS6.1AI score0.00323EPSS