Vulnerability CVE-2018-17955

Vulnerability Name:

CVE-2018-17955 (CCN-162054)

Assigned:

2018-11-28

Published:

2018-11-28

Updated:

2019-10-09

Summary:

In yast2-multipath before version 4.1.1 a static temporary filename allows local attackers to overwrite files on systems without symlink protection

CVSS v3 Severity:

5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N)
4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

5.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N)
4.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

CVSS v2 Severity:

3.6 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Partial

4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Complete Availibility (A): None

Vulnerability Type:

CWE-59

Vulnerability Consequences:

File Manipulation

References:

Source: MITRE
Type: CNA
CVE-2018-17955

Source: CCN
Type: Bugzilla - Bug 1117592
VUL-1: CVE-2018-17955: yast2-multipath: static tempfile name allows overwriting of arbitrary files

Source: CONFIRM
Type: Issue Tracking, Patch, Third Party Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1117592

Source: XF
Type: UNKNOWN
yast2multipath-cve201817955-symlink(162054)

Source: CCN
Type: yast-multipath GIT Repository
bsc#1117592, use random file name. Version 4.1.1 by nick-wang · Pull Request #27· yast/yast-multipath · GitHub

Vulnerable Configuration:

Configuration 1:

cpe:/a:opensuse:yast2-multipath:*:*:*:*:*:*:*:* (Version < 4.1.1)

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201817955	V	CVE-2018-17955	2023-06-22
oval:org.opensuse.security:def:7839	P	yast2-multipath-4.5.0-150500.1.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:595	P	Security update for mozilla-nss (Important)	2022-07-22
oval:org.opensuse.security:def:3233	P	libpng12-0-1.2.50-19.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94863	P	yast2-multipath-4.4.1-150400.1.10 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:342	P	yast2-multipath-4.2.1-1.74 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:923	P	Security update for conmon, libcontainers-common, libseccomp, podman (Moderate)	2022-02-25
oval:org.opensuse.security:def:113617	P	yast2-multipath-4.4.1-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:70015	P	Security update for apache2 (Important) (in QA)	2022-01-10
oval:org.opensuse.security:def:100692	P	(Important)	2021-12-06
oval:org.opensuse.security:def:93979	P	(Moderate)	2021-10-20
oval:org.opensuse.security:def:1271	P	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP3) (Important)	2021-10-12
oval:org.opensuse.security:def:106999	P	yast2-multipath-4.4.1-1.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:89839	P	yast2-multipath-4.1.1-6.56 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61684	P	yast2-multipath-4.1.1-6.56 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:103494	P	yast2-multipath-4.1.1-6.56 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71425	P	yast2-multipath-4.1.1-6.56 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71195	P	glibc-locale-32bit-2.26-13.8.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:96804	P	yast2-multipath-4.1.1-6.56 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:69910	P	Security update for libass (Important)	2021-08-20
oval:org.opensuse.security:def:47817	P	libyaml-0-2-0.1.6-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14002	P	perl-32bit-5.18.2-11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48031	P	gstreamer-1.8.3-9.5 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13993	P	openvswitch-2.5.1-24.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47131	P	ppc64-diag-2.7.1-5.6 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48115	P	libgcrypt20-1.6.1-16.68.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14023	P	radvd-1.9.7-2.12 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14024	P	res-signingkeys-3.0.18-26.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47252	P	expat-2.1.0-20.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48177	P	libprocps3-3.3.9-11.18.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47445	P	minicom-2.7-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47116	P	pam-1.1.8-14.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48242	P	mipv6d-2.0.2.umip.0.4-19.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14045	P	tar-1.27.1-8.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47577	P	coreutils-8.25-13.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13971	P	libvdpau1-1.1.1-6.73 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48273	P	policycoreutils-2.5-10.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47669	P	libSoundTouch0-1.7.1-5.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48344	P	xfsprogs-4.15.0-1.12 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47117	P	pam-modules-12.1-23.12 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:101118	P	yast2-multipath-4.2.1-1.74 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62360	P	yast2-multipath-4.2.1-1.74 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72101	P	yast2-multipath-4.2.1-1.74 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:13333	P	libX11-6-1.6.2-4.10 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13342	P	libXrandr2-1.4.2-3.55 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:71082	P	python2-numpy-1.14.0-2.25 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13351	P	libapr1-1.5.1-2.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13364	P	libgoa-1_0-0-3.10.5-1.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13362	P	libgcrypt20-1.6.1-9.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13268	P	bind-9.9.5P1-1.10 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13372	P	libltdl7-2.4.2-14.30 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13273	P	coolkey-1.1.0-147.67 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13385	P	libpng16-16-1.6.8-2.15 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13298	P	ft2demos-2.5.3-2.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13311	P	gpg2-2.0.24-1.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13293	P	evince-3.10.3-1.145 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13320	P	hyper-v-6-7.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13318	P	hardlink-1.0-6.38 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:64495	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:19454	P	Security update for yast2-multipath (Moderate)	2021-01-21
oval:org.opensuse.security:def:13149	P	procmail-3.22-269.3.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13117	P	mozilla-nspr-32bit-4.21-19.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13168	P	rrdtool-1.4.7-21.3.27 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13164	P	radvd-1.9.7-2.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13243	P	cpp5-5.3.1+r233831-9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:116916	P	yast2-multipath-4.2.1-1.74 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13179	P	socat-1.7.2.4-3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13137	P	perl-Archive-Zip-1.34-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13198	P	tpm2.0-tools-3.1.4-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13184	P	strongswan-5.1.3-26.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62012	P	yast2-multipath-4.2.1-1.74 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107358	P	yast2-multipath-4.2.1-1.74 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13199	P	transfig-3.2.5e-2.3.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71753	P	yast2-multipath-4.2.1-1.74 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13218	P	xlockmore-5.43-5.30 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13087	P	libusbmuxd4-1.0.10-2.3 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:48982	P	empathy-3.12.14-8.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13134	P	patch-2.7.5-8.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49036	P	libsilc-1_1-2-1.1.10-24.128 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:67742	P	libudisks2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67842	P	yast2-multipath on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49310	P	python3-SQLAlchemy on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49364	P	yast2-multipath on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64408	P	libxslt-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73232	P	libtiff-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66567	P	libzzip-0-13 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66659	P	yast2-multipath on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73350	P	yast2-multipath on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:125089	P	Security update for yast2-multipath (Moderate)	2020-11-06

BACK