Lucene search
Veracode Vulnerability DatabaseVERACODE:13357HistoryFeb 18, 2019 - 6:46 a.m.
Remote Code Execution (RCE)
2019-02-1806:46:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
0.001 Low
EPSS
Percentile
20.6%
libflatpak.so is susceptible to remote code execution (RCE). The attack exists because an attacker is able to break sandbox protection through /proc/self/exe.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libflatpak.so | eq | 0.10002.0 | |
| flatpak | eq | 1.0.2__2.el7 | |
| flatpak | eq | 0.8.8__4.el7_5 | |
| flatpak | eq | 0.8.8__3.el7 |
Related
nessus
nessus
Amazon Linux 2 : flatpak (ALAS-2019-1183)
2019-03-29 00:00:00
Oracle Linux 7 : flatpak (ELSA-2019-0375)
2019-02-20 00:00:00
CentOS 7 : flatpak (CESA-2019:0375)
2019-02-21 00:00:00
nvd
nvd
CVE-2019-8308
2019-02-12 23:29:00
ubuntucve
ubuntucve
CVE-2019-8308
2019-02-12 00:00:00
osv
osv
CVE-2019-8308
2019-02-12 23:29:00
flatpak - security update
2019-02-12 00:00:00
oraclelinux
oraclelinux
flatpak security update
2019-02-19 00:00:00
cvelist
cvelist
CVE-2019-8308
2019-02-12 23:00:00
amazon
amazon
Important: flatpak
2019-03-21 19:31:00
openvas
openvas
Huawei EulerOS: Security Advisory for flatpak (EulerOS-SA-2019-1134)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for flatpak (EulerOS-SA-2020-1846)
2020-08-31 00:00:00
Debian: Security Advisory (DSA-4390-1)
2019-02-11 00:00:00
debiancve
debiancve
CVE-2019-8308
2019-02-12 23:29:00
redhatcve
redhatcve
CVE-2019-8308
2019-10-08 09:49:01
prion
prion
Design/Logic Flaw
2019-02-12 23:29:00
cve
cve
CVE-2019-8308
2019-02-12 23:29:00
redhat
redhat
(RHSA-2019:0375) Important: flatpak security update
2019-02-19 15:59:19
centos
centos
flatpak security update
2019-02-20 20:15:35
fedora
fedora
[SECURITY] Fedora 28 Update: flatpak-1.0.7-1.fc28
2019-02-28 19:38:32
suse
suse
Security update for flatpak (moderate)
2019-08-31 00:00:00