CVE-2021-3155

Published February 17th, 2022

View on NVD ↗

CVSS v3

3.8

LOW

CVSS v2

2.1

LOW

Affected

PROJECT

Description

snapd 2.54.2 and earlier created ~/snap directories in user home directories without specifying owner-only permissions. This could allow a local attacker to read information that should have been private. Fixed in snapd versions 2.54.3+18.04, 2.54.3+20.04 and 2.54.3+21.10.1

canonical/snapd

The snapd and snap tools enable systems to work with .snap files.

GitHub

2.03K