Canonical: >> Pebble >> 1.4.0 Security Vulnerabilities
It was discovered that Canonical's Pebble service manager read-file API and the associated pebble pull command, before v1.10.2, allowed unprivileged local users to read files with root-equivalent permissions when Pebble was running as root. Fixes are also available as backports to v1.1.1, v1.4.2, and v1.7.4.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-04-04