CVE-2017-5940Improper Privilege Management in Project Firejail

CWE-269Improper Privilege Management5 documents5 sources
Severity
8.8HIGHNVD
EPSS
0.1%
top 76.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Firejail Project Firejail
Timeline
PublishedFeb 9
Latest updateMay 13

Description

Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-5180.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 2.0 | Impact: 6.0

Affected Packages2 packages

Debianfirejail_project/firejail< 0.9.44.6-1+3
NVDfirejail_project/firejail0.9.380.9.38.10+1

Patches

Patch: www.openwall.comPatch: github.comPatch: github.com

🔴Vulnerability Details

3
GHSA
GHSA-2mx9-jpq3-jxj6: Firejail before 02022-05-13
CVEList
CVE-2017-5940: Firejail before 02017-02-09
OSV
CVE-2017-5940: Firejail before 02017-02-09

📋Vendor Advisories

1
Debian
CVE-2017-5940: firejail - Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehe...2017
CVE-2017-5940 — Improper Privilege Management | cvebase