Lucene search
Veracode Vulnerability DatabaseVERACODE:48243HistoryJul 26, 2024 - 3:09 p.m.
Denial Of Service (DoS)
2024-07-2615:09:21
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
github
vulnerability
file type checking
snapd
denial of service
CVSS3
6.6
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H
AI Score
6.7
Confidence
High
github.com/snapcore/snapd is vulnerable to Denial of Service (DoS). The vulnerability is due to improper file type checking when extracting snaps, allowing malicious snaps containing non-regular files to cause snapd to block indefinitely and result in a Denial of Service.
Related
vulnrichment
vulnrichment
CVE-2024-29068 snapd non-regular file indefinite blocking read
2024-07-25 19:28:05
ubuntucve
ubuntucve
CVE-2024-29068
2024-03-14 00:00:00
debiancve
debiancve
CVE-2024-29068
2024-07-25 20:15:04
github
github
snapd failed to properly check the file type when extracting a snap
2024-07-25 21:31:20
cvelist
cvelist
CVE-2024-29068 snapd non-regular file indefinite blocking read
2024-07-25 19:28:05
nvd
nvd
CVE-2024-29068
2024-07-25 20:15:04
osv
osv
snapd failed to properly check the file type when extracting a snap
2024-07-25 21:31:20
CVE-2024-29068
2024-07-25 20:15:04
cve
cve
CVE-2024-29068
2024-07-25 20:15:04
openvas
openvas
Ubuntu: Security Advisory (USN-6940-1)
2024-08-02 00:00:00
nessus
nessus
ubuntu
ubuntu
snapd vulnerabilities
2024-08-01 00:00:00
redos
redos
ROS-20240910-07
2024-09-10 00:00:00
CVSS3
6.6
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H
AI Score
6.7
Confidence
High
Related for VERACODE:48243