Vulnerabilities (CVE)

Filtered by vendor Snapcraft Subscribe
Filtered by product Snapd
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-14178 1 Snapcraft 1 Snapd 2024-02-28 5.0 MEDIUM 7.5 HIGH
In snapd 2.27 through 2.29.2 the 'snap logs' command could be made to call journalctl without match arguments and therefore allow unprivileged, unauthenticated users to bypass systemd-journald's access restrictions.