Vulnerability Description
cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass intended security mechanisms such as full disk encryption. This issue did not affect traditional Ubuntu systems. Fixed in snapd version 2.45.2, revision 8539 and core version 2.45.2, revision 9659.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Canonical | Snapd | < 2.45.2 |
| Canonical | Ubuntu Linux | 16.04 |
Related Weaknesses (CWE)
References
- https://launchpad.net/bugs/1879530Third Party Advisory
- https://ubuntu.com/USN-4424-1Vendor Advisory
- https://launchpad.net/bugs/1879530Third Party Advisory
- https://ubuntu.com/USN-4424-1Vendor Advisory
FAQ
What is CVE-2020-11933?
CVE-2020-11933 is a vulnerability with a CVSS score of 7.3 (HIGH). cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-da...
How severe is CVE-2020-11933?
CVE-2020-11933 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-11933?
Check the references section above for vendor advisories and patch information. Affected products include: Canonical Snapd, Canonical Ubuntu Linux.