CVE-2018-10906
CVE-2018-10906
Vexday Risk Score
33Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS 5.3EPSS 1.4%KEV nãoPoC públicaNuclei —Metasploit —Patch referenciado
Lifecycle
24 Jul 2018Published on NVD
30 Jul 2018Public PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is vulnerable to a restriction bypass when SELinux is active. This allows non-root users to mount a FUSE file system with the 'allow_other' mount option regardless of whether 'user_allow_other' is set in the fuse configuration. An attacker may use this flaw to mount a FUSE file system, accessible by other users, and trick them into accessing files on that file system, possibly causing Denial of Service or other unspecified effects.
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Affected products
[UNKNOWN] · fusepublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/45106/unverifiedexploitdbwww.exploit-db.com/exploits/45106unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://access.redhat.com/errata/RHSA-2018:3324https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10906https://lists.debian.org/debian-lts-announce/2018/08/msg00015.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5XYA6PXT5PPWVK7CM7K4YRCYWA37DODB/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A253TZWZK6R7PT2S5JIEAQJR2TYKX7V2/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BREAIWIK64DRJWHIGR47L2D5YICY4HQ3/https://www.debian.org/security/2018/dsa-4257https://www.exploit-db.com/exploits/45106/