Canonical Subiquity vulnerabilities
3 known vulnerabilities affecting canonical/subiquity.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2022-0555HIGHCVSS 8.4fixed in 22.02.12024-06-03
CVE-2022-0555 [HIGH] CWE-256 CVE-2022-0555: Subiquity Shows Guided Storage Passphrase in Plaintext with Read-all Permissions
Subiquity Shows Guided Storage Passphrase in Plaintext with Read-all Permissions
nvd
CVE-2023-5182MEDIUMCVSS 5.5≤ 23.09.12023-10-07
CVE-2023-5182 [MEDIUM] CWE-532 CVE-2023-5182: Sensitive data could be exposed in logs of subiquity version 23.09.1 and earlier. An attacker in the
Sensitive data could be exposed in logs of subiquity version 23.09.1 and earlier. An attacker in the adm group could use this information to find hashed passwords and possibly escalate their privilege.
nvd
CVE-2020-11932LOWCVSS 2.3fixed in 20.05.2≥ unspecified, < 20.05.22020-05-13
CVE-2020-11932 [LOW] CWE-532 CVE-2020-11932: It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryptio
It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered.
nvd