Privilege-Escalation

• CVE-2026-3888: Snap LPE -- Patch It Now March 18, 2026

  CVE-2026-3888 is a local privilege escalation in Ubuntu's Snap package manager (CVSS 7.8). An unprivileged attacker waits for systemd-tmpfiles to delete /tmp/.snap -- 10-30 days depending on Ubuntu version -- then recreates it with malicious payloads. snap-confine bind-mounts them as root on next sandbox init. Patch is available now.