CVE-2020-27352
CRITICALsnapd < 2.48.3 - Improper Privilege Management via systemd Service Unit Generation
Title source: llmDescription
When generating the systemd service units for the docker snap (and other similar snaps), snapd does not specify Delegate=yes - as a result systemd will move processes from the containers created and managed by these snaps into the cgroup of the main daemon within the snap itself when reloading system units. This may grant additional privileges to a container within the snap that were not originally intended.
References (3)
Core 3
Core References
Exploit, Issue Tracking issue-tracking
https://bugs.launchpad.net/snapd/+bug/1910456
Vendor Advisory vendor-advisory
https://ubuntu.com/security/notices/USN-4728-1
Third Party Advisory issue-tracking
https://www.cve.org/CVERecord?id=CVE-2020-27352
Scores
CVSS v3
9.3
EPSS
0.0014
EPSS Percentile
34.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-269
Status
published
Products (5)
canonical/snapd
< 2.48.3
canonical/ubuntu_linux
16.04
canonical/ubuntu_linux
18.04
canonical/ubuntu_linux
20.04
canonical/ubuntu_linux
20.10
Published
Jun 21, 2024
Tracked Since
Feb 18, 2026