CVE-2018-1111high
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. A malicious DHCP server, or an attacker on the local network able to spoof DHCP responses, could use this flaw to execute arbitrary commands with root privileges on systems using NetworkManager and configured to obtain network configuration using the DHCP protocol.
References
http://www.securityfocus.com/bid/104195
http://www.securitytracker.com/id/1040912
https://access.redhat.com/errata/RHSA-2018:1453
https://access.redhat.com/errata/RHSA-2018:1454
https://access.redhat.com/errata/RHSA-2018:1455
https://access.redhat.com/errata/RHSA-2018:1456
https://access.redhat.com/errata/RHSA-2018:1457
https://access.redhat.com/errata/RHSA-2018:1458
https://access.redhat.com/errata/RHSA-2018:1459
https://access.redhat.com/errata/RHSA-2018:1460
https://access.redhat.com/errata/RHSA-2018:1461
https://access.redhat.com/errata/RHSA-2018:1524
https://access.redhat.com/security/vulnerabilities/3442151
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1111
https://www.exploit-db.com/exploits/44652/
Details
Source: MITRE
Published: 2018-05-17
Updated: 2019-10-03
Type: CWE-78
Risk Information
CVSS v2
Base Score: 7.9
Vector: AV:A/AC:M/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 5.5
Severity: HIGH
CVSS v3
Base Score: 7.5
Vector: CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.6
Severity: HIGH
Vulnerable Software
Configuration 1
OR
cpe:2.3:o:fedoraproject:fedora:26:*:*:*:*:*:*:*
Configuration 2
OR
cpe:2.3:a:redhat:enterprise_virtualization:4.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:enterprise_virtualization:4.2:*:*:*:*:*:*:*
cpe:2.3:a:redhat:enterprise_virtualization_host:4.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.7:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 127381 | NewStart CGSL MAIN 4.05 : dhcp Vulnerability (NS-SA-2019-0129) | Nessus | NewStart CGSL Local Security Checks | high |
| 127178 | NewStart CGSL CORE 5.04 / MAIN 5.04 : dhcp Multiple Vulnerabilities (NS-SA-2019-0021) | Nessus | NewStart CGSL Local Security Checks | high |
| 124882 | EulerOS Virtualization for ARM 64 3.0.1.0 : dhcp (EulerOS-SA-2019-1379) | Nessus | Huawei Local Security Checks | high |
| 120293 | Fedora 28 : 12:dhcp (2018-23ca7a6798) | Nessus | Fedora Local Security Checks | high |
| 110852 | EulerOS 2.0 SP3 : dhcp (EulerOS-SA-2018-1188) | Nessus | Huawei Local Security Checks | high |
| 110198 | Amazon Linux AMI : dhcp (ALAS-2018-1024) | Nessus | Amazon Linux Local Security Checks | high |
| 110194 | Amazon Linux 2 : dhcp (ALAS-2018-1021) | Nessus | Amazon Linux Local Security Checks | high |
| 110127 | EulerOS 2.0 SP2 : dhcp (EulerOS-SA-2018-1123) | Nessus | Huawei Local Security Checks | high |
| 110126 | EulerOS 2.0 SP1 : dhcp (EulerOS-SA-2018-1122) | Nessus | Huawei Local Security Checks | high |
| 109910 | RHEL 7 : Virtualization (RHSA-2018:1525) | Nessus | Red Hat Local Security Checks | critical |
| 109909 | RHEL 7 : Virtualization (RHSA-2018:1524) | Nessus | Red Hat Local Security Checks | high |
| 109874 | Fedora 26 : 12:dhcp (2018-5392896132) | Nessus | Fedora Local Security Checks | high |
| 109850 | Scientific Linux Security Update : dhcp on SL7.x x86_64 (20180515) | Nessus | Scientific Linux Local Security Checks | high |
| 109849 | Scientific Linux Security Update : dhcp on SL6.x i386/x86_64 (20180515) | Nessus | Scientific Linux Local Security Checks | high |
| 109847 | RHEL 6 : dhcp (RHSA-2018:1461) | Nessus | Red Hat Local Security Checks | high |
| 109846 | RHEL 6 : dhcp (RHSA-2018:1460) | Nessus | Red Hat Local Security Checks | high |
| 109845 | RHEL 6 : dhcp (RHSA-2018:1459) | Nessus | Red Hat Local Security Checks | high |
| 109844 | RHEL 6 : dhcp (RHSA-2018:1458) | Nessus | Red Hat Local Security Checks | high |
| 109843 | RHEL 7 : dhcp (RHSA-2018:1457) | Nessus | Red Hat Local Security Checks | high |
| 109842 | RHEL 7 : dhcp (RHSA-2018:1456) | Nessus | Red Hat Local Security Checks | high |
| 109841 | RHEL 7 : dhcp (RHSA-2018:1455) | Nessus | Red Hat Local Security Checks | high |
| 109840 | RHEL 6 : dhcp (RHSA-2018:1454) | Nessus | Red Hat Local Security Checks | high |
| 109839 | RHEL 7 : dhcp (RHSA-2018:1453) | Nessus | Red Hat Local Security Checks | high |
| 109830 | OracleVM 3.3 / 3.4 : dhcp (OVMSA-2018-0042) | Nessus | OracleVM Local Security Checks | high |
| 109827 | Oracle Linux 6 : dhcp (ELSA-2018-1454) | Nessus | Oracle Linux Local Security Checks | high |
| 109826 | Oracle Linux 7 : dhcp (ELSA-2018-1453) | Nessus | Oracle Linux Local Security Checks | high |
| 109820 | Fedora 27 : 12:dhcp (2018-36058ed9f2) | Nessus | Fedora Local Security Checks | high |
| 109815 | CentOS 6 : dhcp (CESA-2018:1454) | Nessus | CentOS Local Security Checks | high |
| 109814 | CentOS 7 : dhcp (CESA-2018:1453) | Nessus | CentOS Local Security Checks | high |