CVE-2018-10853

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process could use this flaw to potentially escalate privileges inside guest.

References

http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00043.html

https://access.redhat.com/errata/RHSA-2019:2029

https://access.redhat.com/errata/RHSA-2019:2043

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10853

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=129a72a0d3c8e139a04512325384fe5ac119e74

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3c9fa24ca7c9c47605672916491f79e8ccacb9e6

https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html

https://lists.debian.org/debian-lts-announce/2018/07/msg00016.html

https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html

https://usn.ubuntu.com/3777-1/

https://usn.ubuntu.com/3777-2/

https://www.openwall.com/lists/oss-security/2018/09/02/1

Details

Source: MITRE

Published: 2018-09-11

Updated: 2019-10-03

Type: CWE-269

Risk Information

CVSS v2

Base Score: 4.6

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 3.9

Severity: MEDIUM

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH

Tenable Plugins

View all (53 total)

IDNameProductFamilySeverity
133164RHEL 7 : kernel (RHSA-2020:0179)NessusRed Hat Local Security Checks
high
132886RHEL 7 : kernel (RHSA-2020:0103)NessusRed Hat Local Security Checks
high
132700RHEL 7 : kernel (RHSA-2020:0036)NessusRed Hat Local Security Checks
critical
132495NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel-rt Multiple Vulnerabilities (NS-SA-2019-0253)NessusNewStart CGSL Local Security Checks
high
132474NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel Multiple Vulnerabilities (NS-SA-2019-0247)NessusNewStart CGSL Local Security Checks
high
130663EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-2201)NessusHuawei Local Security Checks
critical
129920NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel-rt Multiple Vulnerabilities (NS-SA-2019-0183)NessusNewStart CGSL Local Security Checks
medium
129900NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0180)NessusNewStart CGSL Local Security Checks
medium
128651CentOS 7 : kernel (CESA-2019:2029)NessusCentOS Local Security Checks
medium
128226Scientific Linux Security Update : kernel on SL7.x x86_64 (20190806)NessusScientific Linux Local Security Checks
medium
127655RHEL 7 : kernel-rt (RHSA-2019:2043)NessusRed Hat Local Security Checks
medium
127650RHEL 7 : kernel (RHSA-2019:2029)NessusRed Hat Local Security Checks
medium
125303openSUSE Security Update : the Linux Kernel (openSUSE-2019-1407) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)NessusSuSE Local Security Checks
high
124953EulerOS Virtualization 3.0.1.0 : kvm (EulerOS-SA-2019-1450)NessusHuawei Local Security Checks
high
123269openSUSE Security Update : the Linux Kernel (openSUSE-2019-618) (Foreshadow)NessusSuSE Local Security Checks
medium
120897Fedora 28 : kernel (2018-f1b818a5c9)NessusFedora Local Security Checks
high
120088SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2018:2539-1)NessusSuSE Local Security Checks
high
118034SUSE SLES12 Security Update : kernel (SUSE-SU-2018:3084-1)NessusSuSE Local Security Checks
high
118033SUSE SLES12 Security Update : kernel (SUSE-SU-2018:3083-1)NessusSuSE Local Security Checks
high
117873Ubuntu 16.04 LTS : linux-hwe, linux-gcp vulnerabilities (USN-3777-2)NessusUbuntu Local Security Checks
high
117872Ubuntu 18.04 LTS : linux, linux-aws, linux-gcp, linux-kvm, linux-oem, linux-raspi2 vulnerabilities (USN-3777-1)NessusUbuntu Local Security Checks
high
117824SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2908-1)NessusSuSE Local Security Checks
high
117578EulerOS Virtualization 2.5.1 : kvm (EulerOS-SA-2018-1269)NessusHuawei Local Security Checks
high
117451SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2684-1)NessusSuSE Local Security Checks
high
112016SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2416-1) (Foreshadow)NessusSuSE Local Security Checks
high
111842SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2391-1) (Foreshadow)NessusSuSE Local Security Checks
high
111841SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2389-1) (Foreshadow)NessusSuSE Local Security Checks
high
111839SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2387-1) (Foreshadow)NessusSuSE Local Security Checks
high
111836SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2369-1) (Foreshadow)NessusSuSE Local Security Checks
high
111835SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2368-1) (Foreshadow)NessusSuSE Local Security Checks
high
111834SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2367-1) (Foreshadow)NessusSuSE Local Security Checks
high
111832SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2364-1) (Foreshadow)NessusSuSE Local Security Checks
high
111831SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2363-1) (Foreshadow)NessusSuSE Local Security Checks
high
111829SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2359-1) (Foreshadow)NessusSuSE Local Security Checks
high
111828SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2358-1) (Foreshadow)NessusSuSE Local Security Checks
high
111827SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2356-1) (Foreshadow)NessusSuSE Local Security Checks
high
111826SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2355-1) (Foreshadow)NessusSuSE Local Security Checks
high
111825SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2354-1) (Foreshadow)NessusSuSE Local Security Checks
high
111824SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2353-1) (Foreshadow)NessusSuSE Local Security Checks
high
111823SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2352-1) (Foreshadow)NessusSuSE Local Security Checks
high
111822SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2351-1) (Foreshadow)NessusSuSE Local Security Checks
high
111821SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2350-1) (Foreshadow)NessusSuSE Local Security Checks
high
111820SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2349-1) (Foreshadow)NessusSuSE Local Security Checks
high
111819SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2348-1) (Foreshadow)NessusSuSE Local Security Checks
high
111818SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2347-1) (Foreshadow)NessusSuSE Local Security Checks
high
111817SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2346-1) (Foreshadow)NessusSuSE Local Security Checks
high
111816SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2345-1) (Foreshadow)NessusSuSE Local Security Checks
high
111814SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2342-1) (Foreshadow)NessusSuSE Local Security Checks
high
111813SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2341-1) (Foreshadow)NessusSuSE Local Security Checks
high
111812openSUSE Security Update : the Linux Kernel (openSUSE-2018-886) (Foreshadow)NessusSuSE Local Security Checks
high
111165Debian DLA-1423-1 : linux-4.9 new package (Spectre)NessusDebian Local Security Checks
high
111082Debian DLA-1422-2 : linux security update (Spectre)NessusDebian Local Security Checks
high
110577Fedora 27 : kernel (2018-b57db4753c)NessusFedora Local Security Checks
high