Executive Summary

Informations
NameCVE-2018-16871First vendor Publication2019-07-30
VendorCveLast vendor Modification2019-09-10

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16871

CWE : Common Weakness Enumeration

%idName
100 %CWE-476NULL Pointer Dereference

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Os1742
Os1
Os1
Os1
Os1
Os1
Os1
Os1

Sources (Detail)

SourceUrl
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16871
REDHAT https://access.redhat.com/errata/RHSA-2019:2696
https://access.redhat.com/errata/RHSA-2019:2730

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
DateInformations
2019-09-11 17:18:52
  • Multiple Updates
2019-09-11 00:19:47
  • Multiple Updates
2019-08-06 21:19:56
  • Multiple Updates
2019-07-31 00:19:16
  • Multiple Updates
2019-07-30 21:19:15
  • First insertion