5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
8 High
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.016 Low
EPSS
Percentile
87.4%
Paolo Bonzini discovered a flaw in Linuxβs handling of the SG_IO ioctl
command. A local user, or user in a VM could exploit this flaw to bypass
restrictions and gain read/write access to all data on the affected block
device. (CVE-2011-4127)
A flaw was found in KVMβs Programmable Interval Timer (PIT). When a virtual
interrupt control is not available a local user could use this to cause a
denial of service by starting a timer. (CVE-2011-4622)
A flaw was discovered in the XFS filesystem. If a local user mounts a
specially crafted XFS image it could potential execute arbitrary code on
the system. (CVE-2012-0038)
A flaw was found in the Linux kernelβs ext4 file system when mounting a
corrupt filesystem. A user-assisted remote attacker could exploit this flaw
to cause a denial of service. (CVE-2012-2100)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 10.04 | noarch | linux-image-2.6.32-39-lpia | <Β 2.6.32-39.86 | UNKNOWN |
Ubuntu | 10.04 | noarch | block-modules-2.6.32-39-generic-di | <Β 2.6.32-39.86 | UNKNOWN |
Ubuntu | 10.04 | noarch | char-modules-2.6.32-39-generic-di | <Β 2.6.32-39.86 | UNKNOWN |
Ubuntu | 10.04 | noarch | crypto-modules-2.6.32-39-generic-di | <Β 2.6.32-39.86 | UNKNOWN |
Ubuntu | 10.04 | noarch | fat-modules-2.6.32-39-generic-di | <Β 2.6.32-39.86 | UNKNOWN |
Ubuntu | 10.04 | noarch | fb-modules-2.6.32-39-generic-di | <Β 2.6.32-39.86 | UNKNOWN |
Ubuntu | 10.04 | noarch | firewire-core-modules-2.6.32-39-generic-di | <Β 2.6.32-39.86 | UNKNOWN |
Ubuntu | 10.04 | noarch | floppy-modules-2.6.32-39-generic-di | <Β 2.6.32-39.86 | UNKNOWN |
Ubuntu | 10.04 | noarch | fs-core-modules-2.6.32-39-generic-di | <Β 2.6.32-39.86 | UNKNOWN |
Ubuntu | 10.04 | noarch | fs-secondary-modules-2.6.32-39-generic-di | <Β 2.6.32-39.86 | UNKNOWN |
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
8 High
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.016 Low
EPSS
Percentile
87.4%