Firejail Project: >> Firejail Security Vulnerabilities
Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-04-13
Firejail does not properly clean environment variables, which allows local users to gain privileges.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-04-13
Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-04-13
Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent attackers to bypass a seccomp-based sandbox protection mechanism via the --allow-debuggers argument.
CVSS Score
9.0
EPSS Score
0.024
Published
2017-03-23
Firejail before 0.9.44.4, when running a bandwidth command, allows local users to gain root privileges via the --shell argument.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-03-23
Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option.
CVSS Score
8.8
EPSS Score
0.004
Published
2017-02-09
Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-5180.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-02-09
Firejail 0.9.38.4 allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-01-19
Page 2