Lucene search
Veracode Vulnerability DatabaseVERACODE:34274HistoryFeb 18, 2022 - 6:37 a.m.
Information Disclosure
2022-02-1806:37:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
0.0004 Low
EPSS
Percentile
5.1%
github.com/snapcore/snapd is vulnerable to information disclosure. The vulnerability exists due to the library does not properly specify the owner-only permission in ~/snap directories of user home directories, allowing an attacker to read sensitive information through the $SNAP_USER_DATA or $SNAP_USER_COMMON
References
Related
ubuntucve
ubuntucve
CVE-2021-3155
2021-01-13 00:00:00
osv
osv
CVE-2021-3155
2022-02-17 23:15:07
snapd regression
2022-02-24 13:23:26
snapd vulnerabilities
2022-02-18 02:21:20
cvelist
cvelist
CVE-2021-3155 snapd created ~/snap with too-wide permissions
2022-02-17 22:15:16
nvd
nvd
CVE-2021-3155
2022-02-17 23:15:07
prion
prion
Information disclosure
2022-02-17 23:15:00
cve
cve
CVE-2021-3155
2022-02-17 23:15:07
debiancve
debiancve
CVE-2021-3155
2022-02-17 23:15:07
nessus
nessus
Ubuntu 20.04 LTS : snapd vulnerabilities (USN-5292-2)
2022-02-18 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : snapd vulnerabilities (USN-5292-1)
2022-02-17 00:00:00
Ubuntu 16.04 ESM : snapd vulnerabilities (USN-5292-3)
2022-02-18 00:00:00
ubuntu
ubuntu
snapd vulnerabilities
2022-02-17 00:00:00
snapd regression
2022-02-24 00:00:00
snapd vulnerabilities
2022-02-18 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5292-3)
2022-08-26 00:00:00
Ubuntu: Security Advisory (USN-5292-2)
2022-02-19 00:00:00
Ubuntu: Security Advisory (USN-5292-1)
2022-02-18 00:00:00