CVE-2016-1582 in lsdinfo

Summary

LXD before 2.0.2 does not properly set permissions when switching an unprivileged container into privileged mode, which allows local users to access arbitrary world readable paths in the container directory via unspecified vectors.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

01/12/2016

Disclosure

06/09/2016

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

5.5

EPSS

0.00040

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-1582
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-1582
CVE Details	https://www.cvedetails.com/cve/CVE-2016-1582/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!