8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
68.9%
Software: gcc 4.8.5
OS: Cobalt 7.9
CVE-ID: CVE-2018-12886
CVE-Crit: HIGH
CVE-DESC: stack_protect_prologue in cfgexpand.c and stack_protect_epilogue in function.c in GNU Compiler Collection (GCC) 4.1 through 8 (under certain circumstances) generate sequences of instructions when targeting ARM targets that pass the address of the stack protection, allowing an attacker to bypass the -fstack-protector, -fstack-protector-all, -fstack-protector-strong, and -fstack-protector-explicit stack overflow protection by controlling what the stack canary is compared to.
CVE-STATUS: default
CVE-REV: default
CVE-ID: CVE-2019-15847
CVE-Crit: HIGH
CVE-DESC: The POWER9 backend in the GNU Compiler Collection (GCC) prior to version 10 could optimize multiple calls to the __builtin_darn built-in function into a single call, thereby reducing the entropy of the random number generator. This occurred because an unstable operation was not specified. For example, within a single program execution, the result of each __builtin_darn () call could be the same.
CVE-STATUS: default
CVE-REV: default
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
68.9%