exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2017-5180

почти 9 лет назад

Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option.

CVSS3: 8.8

EPSS: Низкий

CVE-2017-5180

почти 9 лет назад

Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option.

CVSS3: 8.8

EPSS: Низкий

CVE-2017-5180

почти 9 лет назад

Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not ...

CVSS3: 8.8

EPSS: Низкий

GHSA-j8r6-v8qr-pf69

больше 3 лет назад

Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option.

CVSS3: 8.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2017-5180 Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option.	CVSS3: 8.8	0% Низкий	почти 9 лет назад
CVE-2017-5180 Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option.	CVSS3: 8.8	0% Низкий	почти 9 лет назад
CVE-2017-5180 Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not ...	CVSS3: 8.8	0% Низкий	почти 9 лет назад
GHSA-j8r6-v8qr-pf69 Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option.	CVSS3: 8.8	0% Низкий	больше 3 лет назад

Уязвимостей на страницу