Lucene search

K
prionPRIOn knowledge basePRION:CVE-2018-10901
HistoryJul 26, 2018 - 5:29 p.m.

Design/Logic Flaw

2018-07-2617:29:00
PRIOn knowledge base
www.prio-n.com
6

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.8%

A flaw was found in Linux kernel’s KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host’s userspace code has an ability to place malicious entries in the GDT, particularly to the per-cpu variables. An attacker can use this to escalate their privileges.

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.8%