Vulnerability CVE-2020-17367

Vulnerability Name:

CVE-2020-17367 (CCN-186825)

Assigned:

2020-08-06

Published:

2020-08-06

Updated:

2022-04-28

Summary:

Firejail through 0.9.62 does not honor the -- end-of-options indicator after the --output option, which may lead to command injection.

CVSS v3 Severity:

7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-88

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2020-17367

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:1208

Source: XF
Type: UNKNOWN
firejail-cve202017367-cmd-exec(186825)

Source: MISC
Type: Third Party Advisory
https://github.com/netblue30/firejail

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20200822 [SECURITY] [DLA 2336-1] firejail security update

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2020-80a6d7e7e0

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2020-45fc8559d5

Source: GENTOO
Type: Third Party Advisory
GLSA-202101-02

Source: MISC
Type: Third Party Advisory
https://www.debian.org/security/2020/dsa-4742

Source: CCN
Type: Debian Security Advisory
DSA-4743-1 ruby-kramdown -- security update

Source: DEBIAN
Type: Third Party Advisory
DSA-4743

Vulnerable Configuration:

Configuration 1:

cpe:/a:firejail_project:firejail:*:*:*:*:*:*:*:* (Version <= 0.9.62)

Configuration 2:

cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:fedoraproject:fedora:31:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:32:*:*:*:*:*:*:*

Configuration 4:

cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 5:

cpe:/o:opensuse:leap:15.2:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:firejail_project:firejail:0.9.62:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:202017367	V	CVE-2020-17367	2022-06-30
oval:org.opensuse.security:def:112233	P	firejail-0.9.66-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:64785	P	Security update for fetchmail (Moderate)	2021-10-20
oval:org.opensuse.security:def:105763	P	firejail-0.9.66-1.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:63238	P	skopeo-0.1.32-4.5.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:64576	P	Security update for libcroco (Moderate)	2021-09-16
oval:org.opensuse.security:def:64575	P	Security update for ghostscript (Critical)	2021-09-15
oval:org.opensuse.security:def:63028	P	openldap2-devel-32bit-2.4.46-9.51.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63032	P	perl-Config-IniFiles-2.94-1.23 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63035	P	perl-Net-Libproxy-0.4.15-12.72 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63060	P	gv-3.7.4-1.41 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:63531	P	colord-1.4.2-1.37 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:64683	P	Security update for libxml2 (Moderate)	2021-05-05
oval:org.opensuse.security:def:111216	P	Security update for firejail (Important)	2021-02-10
oval:org.opensuse.security:def:64439	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:63734	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:75030	P	Security update for firejail (Moderate)	2020-12-01
oval:org.opensuse.security:def:64843	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:63881	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:64955	P	Security update for libvpx (Moderate)	2020-12-01
oval:org.opensuse.security:def:64110	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:74897	P	Security update for sysstat (Low)	2020-12-01
oval:org.opensuse.security:def:110725	P	Security update for firejail (Moderate)	2020-08-14

BACK