VYPR

cloud-init

by snapd

CVEs (1)

  • CVE-2020-11933HigJul 29, 2020
    risk 0.47cvss 7.3epss 0.00

    cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass…