← volver
CVE-2018-10877

CVE-2018-10877

CVSS 7.3 HIGHEPSS 2.3%CWE-125
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.3EPSS 2.3%KEV nãoPoC Nuclei Metasploit Patch referenciado
Ciclo de vida
18 jul 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Productos afectados
[UNKNOWN] · kernel

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://access.redhat.com/errata/RHSA-2018:2948https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877https://lists.debian.org/debian-lts-announce/2018/07/msg00020.htmlhttps://usn.ubuntu.com/3753-1/https://usn.ubuntu.com/3753-2/https://usn.ubuntu.com/3754-1/https://usn.ubuntu.com/3871-1/https://usn.ubuntu.com/3871-3/https://usn.ubuntu.com/3871-4/https://usn.ubuntu.com/3871-5/http://www.securityfocus.com/bid/104878http://www.securityfocus.com/bid/106503