What is CVE-2019-7303?

CVE-2019-7303 is a medium-severity vulnerability in Canonical Snapd, classified under CWE-628. CVSS score: 5.7/10. Published 2019-04-23.

How severe is CVE-2019-7303?

Medium severity. CVSS v3 base score is 5.7 out of 10.

Is CVE-2019-7303 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Canonical Snapd

CVE-2019-7303

A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were generated to match 64-bit ioctl(2) commands on a 64-bit…

EPSS: 0.009 (76.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.7 (Medium). Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L.

Affected products

Canonical Snapd — versions unspecified

Weakness classification (CWE)

CWE-628

Public proof-of-concept exploits

References

usn.ubuntu.com/3917-1/ (x_refsource_MISC)
www.exploit-db.com/exploits/46594 (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-7303?: CVE-2019-7303 is a medium-severity vulnerability in Canonical Snapd, classified under CWE-628. CVSS score: 5.7/10. Published 2019-04-23.
How severe is CVE-2019-7303?: Medium severity. CVSS v3 base score is 5.7 out of 10.
Is CVE-2019-7303 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.