← back
CVE-2019-7304

Local privilege escalation via snapd socket

CVSS 8.8 HIGHEPSS 61.1%
Canonical snapd before version 2.37.1 incorrectly performed socket owner validation, allowing an attacker to run arbitrary commands as root. This issue affects: Canonical snapd versions prior to 2.37.1.
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected products
Canonical · snapd
public PoCs found7
githubgithub.com/initstring/dirty_sock685githubgithub.com/SecuritySi/CVE-2019-7304_DirtySock6githubgithub.com/elvi7major/snap_priv_esc1githubgithub.com/f4T1H21/dirty_sock1githubgithub.com/coby-nguyen/Document-Linux-Privilege-Escalation0cve_referencewww.exploit-db.com/exploits/46361unverifiedcve_referencewww.exploit-db.com/exploits/46362unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://usn.ubuntu.com/3887-1/https://www.exploit-db.com/exploits/46361https://www.exploit-db.com/exploits/46362