PT-2026-35169 · Unknown · Bubblewrap
Fdiakh
·
Published
2026-04-23
·
Updated
2026-05-20
·
CVE-2026-41163
CVSS v4.0
8.7
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
bubblewrap versions 0.11.0 through 0.11.1
Description
Privilege escalation is possible if the software is installed as setuid root, occurring via ptrace (a system call used for process tracing and debugging).
Recommendations
Update to version 0.11.2 or later.
Fix
LPE
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Bubblewrap