Skip to main content

Breaking cybersecurity news

Vulnerability database

EU vulnerability data

Hands-on web security training

Security incidents database

Knowledge library

Analytics & trends

Follow us

Professional cybersecurity intelligence

Breaking cybersecurity news

Vulnerability database

EU vulnerability data

Hands-on web security training

Security incidents database

Knowledge library

Analytics & trends

Follow us

About Sources Sponsored Articles Status Legal Terms

v2.3.3•© 2026

Telegram Bluesky GitHub Contact

Return to CVE list

CVE-2026-3888

CVE-2026-3888

7.8

High

Published:17 Mar 2026

Last updated:17 Jun 2026

Source:security@ubuntu.com

Analyzed

Weakness (CWE)

CWE-268CWE-268

CVSS Vector

v3.1

Attack Vector: Local
Attack Complexity: High
Privileges Required: Low
User Interaction: None
Scope: Changed
Confidentiality: High
Integrity: High
Availability: High

View on MITRE Find PoC on GitHub

Description

Local privilege escalation in snapd on Linux allows local attackers to get root privilege by re-creating snap's private /tmp directory when systemd-tmpfiles is configured to automatically clean up this directory. This issue affects Ubuntu 16.04 LTS, 18.04 LTS, 20.04 LTS, 22.04 LTS, and 24.04 LTS.

References

security@ubuntu.com

https://blog.qualys.com/vulnerabilities-threat-research/2026/03/17/cve-2026-3888-important-snap-flaw-enables-local-privilege-escalation-to-root

security@ubuntu.com

https://cdn2.qualys.com/advisory/2026/03/17/snap-confine-systemd-tmpfiles.txt

security@ubuntu.com

https://discourse.ubuntu.com/t/snapd-local-privilege-escalation-cve-2026-3888

security@ubuntu.com

https://ubuntu.com/security/CVE-2026-3888

security@ubuntu.com

https://ubuntu.com/security/notices/USN-8102-1

af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2026/03/18/1