CVE-2018-1111

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. A malicious DHCP server, or an attacker on the local network able to spoof DHCP responses, could use this flaw to execute arbitrary commands with root privileges on systems using NetworkManager and configured to obtain network configuration using the DHCP protocol.

References

http://www.securityfocus.com/bid/104195

http://www.securitytracker.com/id/1040912

https://access.redhat.com/errata/RHSA-2018:1453

https://access.redhat.com/errata/RHSA-2018:1454

https://access.redhat.com/errata/RHSA-2018:1455

https://access.redhat.com/errata/RHSA-2018:1456

https://access.redhat.com/errata/RHSA-2018:1457

https://access.redhat.com/errata/RHSA-2018:1458

https://access.redhat.com/errata/RHSA-2018:1459

https://access.redhat.com/errata/RHSA-2018:1460

https://access.redhat.com/errata/RHSA-2018:1461

https://access.redhat.com/errata/RHSA-2018:1524

https://access.redhat.com/security/vulnerabilities/3442151

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1111

https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0

https://lists.fedoraproject.org/archives/list/[email protected]/message/CDCLLCHYFFXW354HMB5QBXOQOY5BH2EJ/

https://lists.fedoraproject.org/archives/list/[email protected]/message/IDJA4QRR74TMXW34Q3DYYFPVBYRTJBI7/

https://lists.fedoraproject.org/archives/list/[email protected]/message/QMTTB54QNTPD2SK6UL32EVQHMZP6BUUD/

https://www.exploit-db.com/exploits/44652/

https://www.exploit-db.com/exploits/44890/

https://www.tenable.com/security/tns-2018-10

Details

Source: MITRE

Published: 2018-05-17

Updated: 2019-10-03

Type: CWE-78

Risk Information

CVSS v2

Base Score: 7.9

Vector: AV:A/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 5.5

Severity: HIGH

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.6

Severity: HIGH

Tenable Plugins

View all (29 total)

IDNameProductFamilySeverity
127381NewStart CGSL MAIN 4.05 : dhcp Vulnerability (NS-SA-2019-0129)NessusNewStart CGSL Local Security Checks
high
127178NewStart CGSL CORE 5.04 / MAIN 5.04 : dhcp Multiple Vulnerabilities (NS-SA-2019-0021)NessusNewStart CGSL Local Security Checks
high
124882EulerOS Virtualization for ARM 64 3.0.1.0 : dhcp (EulerOS-SA-2019-1379)NessusHuawei Local Security Checks
high
120293Fedora 28 : 12:dhcp (2018-23ca7a6798)NessusFedora Local Security Checks
high
110852EulerOS 2.0 SP3 : dhcp (EulerOS-SA-2018-1188)NessusHuawei Local Security Checks
high
110198Amazon Linux AMI : dhcp (ALAS-2018-1024)NessusAmazon Linux Local Security Checks
high
110194Amazon Linux 2 : dhcp (ALAS-2018-1021)NessusAmazon Linux Local Security Checks
high
110127EulerOS 2.0 SP2 : dhcp (EulerOS-SA-2018-1123)NessusHuawei Local Security Checks
high
110126EulerOS 2.0 SP1 : dhcp (EulerOS-SA-2018-1122)NessusHuawei Local Security Checks
high
109910RHEL 7 : Virtualization (RHSA-2018:1525)NessusRed Hat Local Security Checks
critical
109909RHEL 7 : Virtualization (RHSA-2018:1524)NessusRed Hat Local Security Checks
high
109874Fedora 26 : 12:dhcp (2018-5392896132)NessusFedora Local Security Checks
high
109850Scientific Linux Security Update : dhcp on SL7.x x86_64 (20180515)NessusScientific Linux Local Security Checks
high
109849Scientific Linux Security Update : dhcp on SL6.x i386/x86_64 (20180515)NessusScientific Linux Local Security Checks
high
109847RHEL 6 : dhcp (RHSA-2018:1461)NessusRed Hat Local Security Checks
high
109846RHEL 6 : dhcp (RHSA-2018:1460)NessusRed Hat Local Security Checks
high
109845RHEL 6 : dhcp (RHSA-2018:1459)NessusRed Hat Local Security Checks
high
109844RHEL 6 : dhcp (RHSA-2018:1458)NessusRed Hat Local Security Checks
high
109843RHEL 7 : dhcp (RHSA-2018:1457)NessusRed Hat Local Security Checks
high
109842RHEL 7 : dhcp (RHSA-2018:1456)NessusRed Hat Local Security Checks
high
109841RHEL 7 : dhcp (RHSA-2018:1455)NessusRed Hat Local Security Checks
high
109840RHEL 6 : dhcp (RHSA-2018:1454)NessusRed Hat Local Security Checks
high
109839RHEL 7 : dhcp (RHSA-2018:1453)NessusRed Hat Local Security Checks
high
109830OracleVM 3.3 / 3.4 : dhcp (OVMSA-2018-0042)NessusOracleVM Local Security Checks
high
109827Oracle Linux 6 : dhcp (ELSA-2018-1454)NessusOracle Linux Local Security Checks
high
109826Oracle Linux 7 : dhcp (ELSA-2018-1453)NessusOracle Linux Local Security Checks
high
109820Fedora 27 : 12:dhcp (2018-36058ed9f2)NessusFedora Local Security Checks
high
109815CentOS 6 : dhcp (CESA-2018:1454)NessusCentOS Local Security Checks
high
109814CentOS 7 : dhcp (CESA-2018:1453)NessusCentOS Local Security Checks
high