CVE-2018-11508

MEDIUM
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex.

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0a0b98734479aa5b3c671d5190e86273372cab95

http://www.securityfocus.com/bid/104292

https://bugs.chromium.org/p/project-zero/issues/detail?id=1574

https://github.com/torvalds/linux/commit/0a0b98734479aa5b3c671d5190e86273372cab95

https://usn.ubuntu.com/3695-1/

https://usn.ubuntu.com/3695-2/

https://usn.ubuntu.com/3697-1/

https://usn.ubuntu.com/3697-2/

https://www.exploit-db.com/exploits/46208/

https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.9

Details

Source: MITRE

Published: 2018-05-28

Updated: 2019-03-27

Type: CWE-200

Risk Information

CVSS v2

Base Score: 2.1

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 3.9

Severity: LOW

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 1.8

Severity: MEDIUM

Tenable Plugins

View all (7 total)

IDNameProductFamilySeverity
124987EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1534)NessusHuawei Local Security Checks
high
111267Ubuntu 16.04 LTS : Linux kernel (HWE) regression (USN-3718-2)NessusUbuntu Local Security Checks
medium
111266Ubuntu 18.04 LTS : Linux kernel regression (USN-3718-1)NessusUbuntu Local Security Checks
medium
110899Ubuntu 16.04 LTS : linux-oem vulnerabilities (USN-3697-2)NessusUbuntu Local Security Checks
high
110898Ubuntu 17.10 : linux, linux-raspi2 vulnerabilities (USN-3697-1)NessusUbuntu Local Security Checks
high
110895Ubuntu 16.04 LTS : linux-hwe, linux-azure vulnerabilities (USN-3695-2)NessusUbuntu Local Security Checks
medium
110894Ubuntu 18.04 LTS : linux, linux-aws, linux-azure, linux-gcp, linux-kvm, linux-oem, linux-raspi2 vulnerabilities (USN-3695-1)NessusUbuntu Local Security Checks
medium