Home > Vulnerability Database > CVE-2020-27352

Mend.io Vulnerability Database

CVE-2020-27352

Good to know:

Date: October 21, 2020

When generating the systemd service units for the docker snap (and other similar snaps), snapd does not specify Delegate=yes - as a result systemd will move processes from the containers created and managed by these snaps into the cgroup of the main daemon within the snap itself when reloading system units. This may grant additional privileges to a container within the snap that were not originally intended.

Language: Go

Severity Score

9.3

Related Resources (5)

Url: https://security-tracker.debian.org/tracker/CVE-2020-27352

Url: https://nvd.nist.gov/vuln/detail/CVE-2020-27352

Url: https://github.com/snapcore/snapd/commit/d717c9a50e5bb200dd1e91494acf943a240758a3

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2020-27352

Url: https://www.mend.io/vulnerability-database/CVE-2020-27352

Severity Score

9.3

Top Fix

Upgrade Version

Upgrade to version 2.49

Learn More

CVSS v3.1

Base Score:	9.3
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	CHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2020-27352

Good to know:

Date: October 21, 2020

Language: Go

Severity Score

Related Resources (5)

Severity Score

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?