CVE-2021-44731 POC (Proof-of-Concept)

A race condition existed in the snapd 2.54.2 snap-confine binary when preparing a private mount namespace for a snap. This could allow a local attacker to gain root privileges by bind-mounting their own contents inside the snap's private mount namespace and causing snap-confine to execute arbitrary code and hence gain privilege escalation. Fixed in snapd versions 2.54.3+18.04, 2.54.3+20.04 and 2.54.3+21.10.1

Published: 2022-02-17

CVSS: 7.8

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Download CVE-2021-44731 POC (Proof-of-Concept) here:

http://zeroday4n6aaxjruc5jgvulkdgy4mkioom5g6q7l3nz475a62vmamiyd.onion/exploit-for-cve-2021-44731.768/

Tip: Download official Tor Browser at https://www.torproject.org/download/ to access .onion links.

https://connollyfinan.ie/poc-412-cve-2025-20333/

https://connollyfinan.ie/poc-356-cve-2020-15778/

https://connollyfinan.ie/poc-505-cve-2024-12828/

https://connollyfinan.ie/poc-415-cve-2023-2868/