Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firejail project firejail - vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2019-12589
In Firejail prior to 0.9.60, seccomp filters are writable inside the jail, leading to a lack of intended seccomp restrictions for a process that is joined to the jail after a filter has been modified by an attacker.
Firejail Project Firejail
7.2
CVSSv2
CVE-2016-10117
Firejail does not restrict access to --tmpfs, which allows local users to gain privileges, as demonstrated by mounting over /etc.
Firejail Project Firejail -
2.1
CVSSv2
CVE-2016-10118
Firejail allows local users to truncate /etc/resolv.conf via a chroot command to /.
Firejail Project Firejail -
7.2
CVSSv2
CVE-2016-10119
Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges.
Firejail Project Firejail -
7.2
CVSSv2
CVE-2016-10120
Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var/lock, which allows local users to gain privileges.
Firejail Project Firejail -
7.2
CVSSv2
CVE-2016-10121
Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges.
Firejail Project Firejail -
7.2
CVSSv2
CVE-2016-10122
Firejail does not properly clean environment variables, which allows local users to gain privileges.
Firejail Project Firejail -
7.2
CVSSv2
CVE-2016-10123
Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges.
Firejail Project Firejail -
9.3
CVSSv2
CVE-2019-12499
Firejail prior to 0.9.60 allows truncation (resizing to length 0) of the firejail binary on the host by running exploit code inside a firejail sandbox and having the sandbox terminated. To succeed, certain conditions need to be fulfilled: The jail (with the exploit code inside) n...
Firejail Project Firejail
7.2
CVSSv2
CVE-2017-5207
Firejail prior to 0.9.44.4, when running a bandwidth command, allows local users to gain root privileges via the --shell argument.
Firejail Project Firejail
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
log injection
CVE-2024-37079
type confusion
CVE-2024-32943
CVE-2024-30103
CVE-2024-37350
arbitrary code
CVE-2024-6189
CVE-2024-6225
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »