Vulnerabilities > Canonical > Snapd

DATE CVE VULNERABILITY TITLE RISK
2019-04-24 CVE-2019-11503 Link Following vulnerability in Canonical Snapd
snap-confine as included in snapd before 2.39 did not guard against symlink races when performing the chdir() to the current working directory of the calling user, aka a "cwd restore permission bypass."
network
low complexity
canonical CWE-59
7.5
2019-04-24 CVE-2019-11502 Link Following vulnerability in Canonical Snapd
snap-confine in snapd before 2.38 incorrectly set the ownership of a snap application to the uid and gid of the first calling user.
network
low complexity
canonical CWE-59
7.5
2019-04-23 CVE-2019-7304 Incorrect Authorization vulnerability in Canonical Snapd
Canonical snapd before version 2.37.1 incorrectly performed socket owner validation, allowing an attacker to run arbitrary commands as root.
network
low complexity
canonical CWE-863
critical
9.8
2019-04-23 CVE-2019-7303 Unspecified vulnerability in Canonical Snapd
A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host.
network
low complexity
canonical
7.5