Vulnerability Description
In snapd 2.27 through 2.29.2 the 'snap logs' command could be made to call journalctl without match arguments and therefore allow unprivileged, unauthenticated users to bypass systemd-journald's access restrictions.
CVSS Score
7.5
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Snapcraft | Snapd | >= 2.27, <= 2.29.2 |
Related Weaknesses (CWE)
References
- https://github.com/snapcore/snapd/pull/4194Issue TrackingThird Party Advisory
- https://launchpad.net/bugs/1730255Issue TrackingPatch
- https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-14178.htmlPatchVendor Advisory
- https://github.com/snapcore/snapd/pull/4194Issue TrackingThird Party Advisory
- https://launchpad.net/bugs/1730255Issue TrackingPatch
- https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-14178.htmlPatchVendor Advisory
FAQ
What is CVE-2017-14178?
CVE-2017-14178 is a vulnerability with a CVSS score of 7.5 (HIGH). In snapd 2.27 through 2.29.2 the 'snap logs' command could be made to call journalctl without match arguments and therefore allow unprivileged, unauthenticated users to bypass systemd-journald's acces...
How severe is CVE-2017-14178?
CVE-2017-14178 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-14178?
Check the references section above for vendor advisories and patch information. Affected products include: Snapcraft Snapd.