Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firejail project vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2016-10117
Firejail does not restrict access to --tmpfs, which allows local users to gain privileges, as demonstrated by mounting over /etc.
Firejail Project Firejail -
7.2
CVSSv2
CVE-2016-10119
Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges.
Firejail Project Firejail -
7.2
CVSSv2
CVE-2016-10120
Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var/lock, which allows local users to gain privileges.
Firejail Project Firejail -
7.2
CVSSv2
CVE-2016-10121
Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges.
Firejail Project Firejail -
7.2
CVSSv2
CVE-2016-10122
Firejail does not properly clean environment variables, which allows local users to gain privileges.
Firejail Project Firejail -
7.2
CVSSv2
CVE-2016-10123
Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges.
Firejail Project Firejail -
4.6
CVSSv2
CVE-2017-5940
Firejail prior to 0.9.44.6 and 0.9.38.x LTS prior to 0.9.38.10 LTS does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink an...
Firejail Project Firejail
4.6
CVSSv2
CVE-2017-5180
Firejail prior to 0.9.44.4 and 0.9.38.x LTS prior to 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --p...
Firejail Project Firejail
1 EDB exploit
2.1
CVSSv2
CVE-2016-10118
Firejail allows local users to truncate /etc/resolv.conf via a chroot command to /.
Firejail Project Firejail -
4.6
CVSSv2
CVE-2019-12589
In Firejail prior to 0.9.60, seccomp filters are writable inside the jail, leading to a lack of intended seccomp restrictions for a process that is joined to the jail after a filter has been modified by an attacker.
Firejail Project Firejail
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »