CVE-2020-27348

Опубликовано: 04 дек. 2020

Источник: nvd

CVSS3: 6.8

CVSS2: 4.4

EPSS Низкий

Описание

In some conditions, a snap package built by snapcraft includes the current directory in LD_LIBRARY_PATH, allowing a malicious snap to gain code execution within the context of another snap if both plug the home interface or similar. This issue affects snapcraft versions prior to 4.4.4, prior to 2.43.1+16.04.1, and prior to 2.43.1+18.04.1.

Ссылки

https://bugs.launchpad.net/bugs/1901572
Exploit
Issue Tracking
Third Party Advisory
https://github.com/snapcore/snapcraft/pull/3345
Third Party Advisory
https://usn.ubuntu.com/usn/usn-4661-1
Patch
Third Party Advisory
https://bugs.launchpad.net/bugs/1901572
Exploit
Issue Tracking
Third Party Advisory
https://github.com/snapcore/snapcraft/pull/3345
Third Party Advisory
https://usn.ubuntu.com/usn/usn-4661-1
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:canonical:snapcraft:*:*:*:*:*:*:*:*

Версия до 4.4.4 (исключая)

Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00065

Низкий

6.8 Medium

CVSS3

4.4 Medium

CVSS2

Дефекты

CWE-427

Связанные уязвимости

CVE-2020-27348

CVSS3: 6.8

ubuntu

около 5 лет назад

GHSA-qxm5-vx5j-pp6w

CVSS3: 6.8

github

больше 3 лет назад

snapcraft Access Restriction Bypass

EPSS

Процентиль: 20%

0.00065

Низкий

6.8 Medium

CVSS3

4.4 Medium

CVSS2

Дефекты

CWE-427