Description

In snapd versions prior to 2.62, when using AppArmor for enforcement of sandbox permissions, snapd failed to restrict writes to the $HOME/bin path. In Ubuntu, when this path exists, it is automatically added to the users PATH. An attacker who could convince a user to install a malicious snap which used the 'home' plug could use this vulnerability to install arbitrary scripts into the users PATH which may then be run by the user outside of the expected snap sandbox and hence allow them to escape confinement.

INFO

Published Date :

2024-07-25T19:05:23.299Z

Last Modified :

2024-08-01T18:48:21.887Z

Source :

canonical
AFFECTED PRODUCTS

The following products are affected by CVE-2024-1724 vulnerability.

Vendors Products
Canonical
  • Snapd
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-1724.

URL Resource
https://github.com/snapcore/snapd/commit/aa191f97713de8dc3ce3ac818539f0b976eb8ef6 cve-icon cve-icon cve-icon
https://github.com/snapcore/snapd/pull/13689 cve-icon cve-icon cve-icon
https://gld.mcphail.uk/posts/explaining-cve-2024-1724/ cve-icon cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-1724 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact