CVE-2020-27348

Exploit

EPSS 0.07%
Published 04.12.2020 03:15:12
Last modified 21.11.2024 05:21:02
Source security@ubuntu.com
Teams watchlist Login
Open Login

In some conditions, a snap package built by snapcraft includes the current directory in LD_LIBRARY_PATH, allowing a malicious snap to gain code execution within the context of another snap if both plug the home interface or similar. This issue affects snapcraft versions prior to 4.4.4, prior to 2.43.1+16.04.1, and prior to 2.43.1+18.04.1.

Affected products Warnungen 0 Metrics 4 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Canonical ≫ Snapcraft Version < 4.4.4

Canonical ≫ Ubuntu Linux Version16.04

Canonical ≫ Ubuntu Linux Version18.04

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.07%	0.207

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.8	1.3	5.5	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L
nvd@nist.gov	4.4	3.4	6.4	AV:L/AC:M/Au:N/C:P/I:P/A:P
security@ubuntu.com	6.8	1.3	5.5	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L

CWE-427 Uncontrolled Search Path Element

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

https://bugs.launchpad.net/bugs/1901572

Third Party Advisory

Exploit

Issue Tracking

https://github.com/snapcore/snapcraft/pull/3345

Third Party Advisory

https://usn.ubuntu.com/usn/usn-4661-1

Patch

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2020-27348

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-27348

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-27348

EUVD