snapd is vulnerable to race condition. An attacker is able to trigger a race condition in snap-confineβs must_mkdir_and_open_with_perms() function.
must_mkdir_and_open_with_perms()