CVE-2018-6198

2018-01-2503:29:00

Google

osv.dev

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N

6.9 Medium

AI Score

Confidence

High

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

5.4%

JSON

w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.

CPENameOperatorVersion
w3meq0.5.3+git20151010
w3mequpstream/0.5.1
w3meq0.5.3+git20160228
w3meq0.5.3+git20150811
w3meq0.5.3+git20150720
w3meq0.5.3+git20170102
w3meq0.5.3+git20151119
w3meq0.5.3+debian-19
w3mequpstream/0.1.10+0.1.11pre+kokb23
w3mequpstream/0.5.3

Name	Operator	Version
w3m	eq	0.5.3+git20151010
w3m	eq	upstream/0.5.1
w3m	eq	0.5.3+git20160228
w3m	eq	0.5.3+git20150811
w3m	eq	0.5.3+git20150720
w3m	eq	0.5.3+git20170102
w3m	eq	0.5.3+git20151119
w3m	eq	0.5.3+debian-19
w3m	eq	upstream/0.1.10+0.1.11pre+kokb23
w3m	eq	upstream/0.5.3