CVE-2018-10906

2018-07-2420:29:00

Google

osv.dev

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

47.6%

JSON

In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is vulnerable to a restriction bypass when SELinux is active. This allows non-root users to mount a FUSE file system with the ‘allow_other’ mount option regardless of whether ‘user_allow_other’ is set in the fuse configuration. An attacker may use this flaw to mount a FUSE file system, accessible by other users, and trick them into accessing files on that file system, possibly causing Denial of Service or other unspecified effects.

CPENameOperatorVersion
fuse3eq3.2.3-r0
fuseeq2.8.1-r0
fuse3eq3.2.0-r0
libfuseeqfuse-3.2.2
fuse3eq3.2.4-r1
fuseeq2.9.4-r0
libfuseeqfuse-3.0.0
fuse3eq3.2.4-r0
fuseeq2.9.1-r1
fuse3eq3.2.3-r1

Name	Operator	Version
fuse3	eq	3.2.3-r0
fuse	eq	2.8.1-r0
fuse3	eq	3.2.0-r0
libfuse	eq	fuse-3.2.2
fuse3	eq	3.2.4-r1
fuse	eq	2.9.4-r0
libfuse	eq	fuse-3.0.0
fuse3	eq	3.2.4-r0
fuse	eq	2.9.1-r1
fuse3	eq	3.2.3-r1