Описание
Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent attackers to bypass a seccomp-based sandbox protection mechanism via the --allow-debuggers argument.
Ссылки
- Mailing ListPatchThird Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Release NotesVendor Advisory
- Issue TrackingPatchThird Party Advisory
- PatchThird Party AdvisoryVDB Entry
- Mailing ListPatchThird Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Release NotesVendor Advisory
- Issue TrackingPatchThird Party Advisory
- PatchThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 0.9.44.4 (исключая)Версия до 4.8 (исключая)
Одновременно
cpe:2.3:a:firejail_project:firejail:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
EPSS
Процентиль: 85%
0.0241
Низкий
9 Critical
CVSS3
6.8 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 9
ubuntu
почти 9 лет назад
Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent attackers to bypass a seccomp-based sandbox protection mechanism via the --allow-debuggers argument.
CVSS3: 9
debian
почти 9 лет назад
Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, a ...
CVSS3: 9
github
больше 3 лет назад
Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent attackers to bypass a seccomp-based sandbox protection mechanism via the --allow-debuggers argument.
EPSS
Процентиль: 85%
0.0241
Низкий
9 Critical
CVSS3
6.8 Medium
CVSS2
Дефекты
NVD-CWE-noinfo