Executive Summary

Informations
Name CVE-2018-8088 First vendor Publication 2018-03-20
Vendor Cve Last vendor Modification 2023-12-27

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Overall CVSS Score 9.8
Base Score 9.8 Environmental Score 9.8
impact SubScore 5.9 Temporal Score 9.8
Exploitabality Sub Score 3.9
 
Attack Vector Network Attack Complexity Low
Privileges Required None User Interaction None
Scope Unchanged Confidentiality Impact High
Integrity Impact High Availability Impact High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score 7.5 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before 1.8.0-beta2 allows remote attackers to bypass intended access restrictions via crafted data. EventData in the slf4j-ext module in QOS.CH SLF4J, has been fixed in SLF4J versions 1.7.26 later and in the 2.0.x series.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8088

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1
Application 1
Application 8
Application 5
Os 1
Os 4
Os 1
Os 3
Os 3
Os 1

Nessus® Vulnerability Scanner

Date Description
2019-01-03 Name : The remote Fedora host is missing a security update.
File : fedora_2018-8b0ad602be.nasl - Type : ACT_GATHER_INFO
2018-06-28 Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1159.nasl - Type : ACT_GATHER_INFO
2018-05-02 Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1092.nasl - Type : ACT_GATHER_INFO
2018-05-02 Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1093.nasl - Type : ACT_GATHER_INFO
2018-04-20 Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2018-999.nasl - Type : ACT_GATHER_INFO
2018-03-30 Name : The remote Fedora host is missing a security update.
File : fedora_2018-a4353f97db.nasl - Type : ACT_GATHER_INFO
2018-03-30 Name : The remote Fedora host is missing a security update.
File : fedora_2018-a46b358764.nasl - Type : ACT_GATHER_INFO
2018-03-28 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-0592.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

https://lists.apache.org/thread.html/956ba8e76b6793a6670b2eb0129a5e3003ce2124...
https://lists.apache.org/thread.html/95ce76613c869dbccf1d3d29327099ccc71aeec1...
https://lists.apache.org/thread.html/r0f376559fd39cf1a53ac3afbc1fc5d62649dcac...
https://lists.apache.org/thread.html/r1660c72a660f0522947ca6ce329dcc74e1ee20c...
https://lists.apache.org/thread.html/r17e7e6abc53d29c0e269153517d36f4bec2755b...
https://lists.apache.org/thread.html/r2d05924f903403927a2f4e78d9b1249a42f0bd0...
https://lists.apache.org/thread.html/r32be21da011479df41468a62bc09d12f0d3b4e3...
https://lists.apache.org/thread.html/r37644f0a00aca9fbcbc21c0f9a91f927b63153e...
https://lists.apache.org/thread.html/r48247c12cf652e95a01fc94ee5aa8641f3ec481...
https://lists.apache.org/thread.html/r573eb577a67503e72181eee637d9b0ac042197e...
https://lists.apache.org/thread.html/r5cf87a035b297c19f4043a37b73c341576dd92f...
https://lists.apache.org/thread.html/r767861f053c15f9e9201b939a0d508dd58475a0...
https://lists.apache.org/thread.html/r81711cde77c2c5742b7b8533c978e79771b700a...
https://lists.apache.org/thread.html/r891761d5014f9ffd79d9737482de832462de538...
https://lists.apache.org/thread.html/r9584c4304c888f651d214341a939bd264ed30c9...
https://lists.apache.org/thread.html/r99a6552e45ca6ba1082031421f51799a4a665ed...
https://lists.apache.org/thread.html/r9e25496608036573736cee484d8d03dae400f09...
https://lists.apache.org/thread.html/raabf1a00b2652575fca9fcb44166a828a0cab97...
https://lists.apache.org/thread.html/rc378b97d52856f9f3c5ced14771fed8357e4187...
https://lists.apache.org/thread.html/rc7de83170d3402af15bfed3d59f80aea20f2505...
https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2...
https://lists.apache.org/thread.html/rd86db9679150e9297b5c0fcb6f0e80a8b81b54f...
https://lists.apache.org/thread.html/re6fb6b0de9d679310437ff87fc94e39da5a14dc...
https://lists.apache.org/thread.html/reb3eeb985afdead17fadb7c33d5d472c1015a85...
https://lists.apache.org/thread.html/rf58e1bee31d66665437dde9acd9abed53f84830...
https://lists.apache.org/thread.html/rfb45527bad7220ada9e30957762e1da254ce405...
https://lists.apache.org/thread.html/rfe52b7cbba4dcba521e13130e5d28d5818b78d7...
https://security.netapp.com/advisory/ntap-20231227-0010/
Source Url
BID http://www.securityfocus.com/bid/103737
MISC https://github.com/qos-ch/slf4j/commit/d2b27fba88e983f921558da27fc29b5f5d269405
https://jira.qos.ch/browse/SLF4J-430
https://jira.qos.ch/browse/SLF4J-431
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/security-alerts/cpuoct2020.html
https://www.oracle.com/security-alerts/cpuoct2021.html
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
https://www.slf4j.org/news.html
REDHAT https://access.redhat.com/errata/RHSA-2018:0582
https://access.redhat.com/errata/RHSA-2018:0592
https://access.redhat.com/errata/RHSA-2018:0627
https://access.redhat.com/errata/RHSA-2018:0628
https://access.redhat.com/errata/RHSA-2018:0629
https://access.redhat.com/errata/RHSA-2018:0630
https://access.redhat.com/errata/RHSA-2018:1247
https://access.redhat.com/errata/RHSA-2018:1248
https://access.redhat.com/errata/RHSA-2018:1249
https://access.redhat.com/errata/RHSA-2018:1251
https://access.redhat.com/errata/RHSA-2018:1323
https://access.redhat.com/errata/RHSA-2018:1447
https://access.redhat.com/errata/RHSA-2018:1448
https://access.redhat.com/errata/RHSA-2018:1449
https://access.redhat.com/errata/RHSA-2018:1450
https://access.redhat.com/errata/RHSA-2018:1451
https://access.redhat.com/errata/RHSA-2018:1525
https://access.redhat.com/errata/RHSA-2018:1575
https://access.redhat.com/errata/RHSA-2018:2143
https://access.redhat.com/errata/RHSA-2018:2419
https://access.redhat.com/errata/RHSA-2018:2420
https://access.redhat.com/errata/RHSA-2018:2669
https://access.redhat.com/errata/RHSA-2018:2930
https://access.redhat.com/errata/RHSA-2019:2413
https://access.redhat.com/errata/RHSA-2019:3140
SECTRACK http://www.securitytracker.com/id/1040627

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
Date Informations
2023-12-27 21:27:56
  • Multiple Updates
2023-11-07 21:41:53
  • Multiple Updates
2022-02-01 00:23:14
  • Multiple Updates
2021-10-20 17:23:29
  • Multiple Updates
2021-08-04 21:23:26
  • Multiple Updates
2021-08-04 17:22:55
  • Multiple Updates
2021-07-26 12:31:01
  • Multiple Updates
2021-07-21 21:24:52
  • Multiple Updates
2021-05-04 13:21:16
  • Multiple Updates
2021-04-22 02:36:17
  • Multiple Updates
2021-03-29 09:22:46
  • Multiple Updates
2021-03-29 01:27:23
  • Multiple Updates
2021-03-28 21:23:07
  • Multiple Updates
2021-03-28 12:27:14
  • Multiple Updates
2021-03-27 17:22:48
  • Multiple Updates
2021-03-26 12:27:39
  • Multiple Updates
2021-02-02 21:23:20
  • Multiple Updates
2021-01-29 09:22:45
  • Multiple Updates
2021-01-29 05:22:46
  • Multiple Updates
2021-01-28 05:22:45
  • Multiple Updates
2020-12-16 17:22:45
  • Multiple Updates
2020-10-21 05:22:48
  • Multiple Updates
2020-09-02 17:23:03
  • Multiple Updates
2020-07-15 09:22:54
  • Multiple Updates
2020-05-23 02:20:17
  • Multiple Updates
2020-05-23 01:19:24
  • Multiple Updates
2019-08-08 17:19:28
  • Multiple Updates
2019-04-26 17:19:13
  • Multiple Updates
2019-04-24 05:18:59
  • Multiple Updates
2019-04-24 00:18:56
  • Multiple Updates
2019-04-22 21:19:17
  • Multiple Updates
2019-03-21 21:19:22
  • Multiple Updates
2019-01-10 17:19:07
  • Multiple Updates
2018-12-13 00:19:11
  • Multiple Updates
2018-10-17 17:19:43
  • Multiple Updates
2018-09-12 17:19:21
  • Multiple Updates
2018-08-16 17:19:28
  • Multiple Updates
2018-07-09 05:18:03
  • Multiple Updates
2018-05-18 09:19:26
  • Multiple Updates
2018-05-17 09:19:39
  • Multiple Updates
2018-05-06 09:19:05
  • Multiple Updates
2018-05-04 09:19:09
  • Multiple Updates
2018-04-27 09:19:21
  • Multiple Updates
2018-04-20 21:19:52
  • Multiple Updates
2018-04-06 09:19:14
  • Multiple Updates
2018-04-05 09:19:44
  • Multiple Updates
2018-03-28 12:09:10
  • Multiple Updates
2018-03-20 21:20:15
  • First insertion