CVE-2017-10600

MEDIUM

ubuntu-image <2017-07-07 - Info Disclosure

Title source: llm

Description

ubuntu-image 1.0 before 2017-07-07, when invoked as non-root, creates files in the resulting image with the uid of the invoking user. When the resulting image is booted, a local attacker with the same uid as the image creator has unintended access to cloud-init and snapd directories.

References (1)

[Third Party Advisory] https://forum.snapcraft.io/t/ownership-bug-in-ubuntu-image/1285

Scores

CVSS v3 5.9

EPSS 0.0005

EPSS Percentile 14.1%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Details

CWE

CWE-384

Status published

Products (2)

canonical/ubuntu-image

n/a/n/a

Published Jul 11, 2017

Tracked Since Feb 18, 2026