CVE-2021-41133 |
AVG-2455 |
High |
No |
Sandbox escape |
A security issue has been found in Flatpak before version 1.12.0. An anonymous reporter discovered that Flatpak apps with direct access to AF_UNIX sockets... |
CVE-2021-21381 |
AVG-1678 |
Medium |
No |
Sandbox escape |
Flatpack since version 0.9.4 and before version 1.10.2 has a vulnerability in the "file forwarding" feature which can be used by an attacker to gain access... |
CVE-2021-21261 |
AVG-1454 |
High |
No |
Sandbox escape |
A bug was discovered in the `flatpak-portal` service that can allow sandboxed applications to execute arbitrary code on the host system (a sandbox escape).... |
CVE-2019-10063 |
AVG-971 |
High |
Yes |
Sandbox escape |
Flatpak before 1.0.8, 1.1.x and 1.2.x before 1.2.4, and 1.3.x before 1.3.1 allows a sandbox bypass. Flatpak versions since 0.8.1 address CVE-2017-5226 by... |
CVE-2019-5736 |
AVG-880 |
High |
Yes |
Privilege escalation |
A vulnerability discovered in runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary... |