Lucene search
CanonicalCVELIST:CVE-2018-15687HistoryOct 25, 2018 - 12:00 a.m.
CVE-2018-15687 systemd: chown_one() can dereference symlinks
2018-10-2500:00:00
canonical
www.cve.org
1
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.7%
A race condition in chown_one() of systemd allows an attacker to cause systemd to set arbitrary permissions on arbitrary files. Affected releases are systemd versions up to and including 239.
CNA Affected
[
{
"product": "systemd",
"vendor": "systemd",
"versions": [
{
"lessThanOrEqual": "239",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Race condition
2018-10-26 14:29:00
nvd
nvd
CVE-2018-15687
2018-10-26 14:29:00
zdt
zdt
Linux systemd Symlink Dereference Via chown_one() Exploit
2018-10-26 00:00:00
systemd - chown_one() can Dereference Symlinks Exploit
2018-10-29 00:00:00
packetstorm
packetstorm
Linux systemd Symlink Dereference Via chown_one()
2018-10-26 00:00:00
cbl_mariner
cbl_mariner
CVE-2018-15687 affecting package systemd 239-44
2020-09-09 06:09:21
debiancve
debiancve
CVE-2018-15687
2018-10-26 14:29:00
redhatcve
redhatcve
CVE-2018-15687
2022-01-13 06:42:13
cve
cve
CVE-2018-15687
2018-10-26 14:29:00
osv
osv
CVE-2018-15687
2018-10-26 14:29:00
ubuntucve
ubuntucve
CVE-2018-15687
2018-10-26 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package systemd version 1:239-alt3
2018-10-29 00:00:00
nessus
nessus
Ubuntu 16.04 LTS : systemd regression (USN-3816-3)
2018-11-28 00:00:00
GLSA-201810-10 : systemd: Multiple vulnerabilities
2018-10-31 00:00:00
Ubuntu 16.04 LTS / 18.04 LTS : systemd vulnerabilities (USN-3816-1)
2018-11-13 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3816-3)
2018-11-28 00:00:00
Fedora Update for systemd FEDORA-2018-24bd6c9d4a
2018-11-05 00:00:00
Ubuntu: Security Advisory (USN-3816-1)
2018-11-13 00:00:00
cloudfoundry
cloudfoundry
USN-3816-2: systemd vulnerability | Cloud Foundry
2018-12-06 00:00:00
USN-3816-1: systemd vulnerabilities | Cloud Foundry
2018-11-20 00:00:00
USN-3816-3: systemd regression | Cloud Foundry
2018-12-06 00:00:00
gentoo
gentoo
systemd: Multiple vulnerabilities
2018-10-30 00:00:00
archlinux
archlinux
[ASA-201811-11] systemd: multiple issues
2018-11-07 00:00:00
ibm
ibm
fedora
fedora
[SECURITY] Fedora 29 Update: systemd-239-6.git9f3aed1.fc29
2018-11-01 15:07:57
[SECURITY] Fedora 28 Update: systemd-238-10.git438ac26.fc28
2018-11-04 22:10:03
ubuntu
ubuntu
systemd vulnerabilities
2018-11-12 00:00:00
systemd regression
2018-11-27 00:00:00
systemd vulnerability
2018-11-19 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1982
2021-07-02 18:13:58
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.7%
Related for CVELIST:CVE-2018-15687