Executive Summary

Informations
NameCVE-2018-17154First vendor Publication2018-09-28
VendorCveLast vendor Modification2018-11-23

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score4.9Attack RangeLocal
Cvss Impact Score6.9Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

In FreeBSD before 11.2-STABLE(r338987), 11.2-RELEASE-p4, and 11.1-RELEASE-p15, due to insufficient memory checking in the freebsd4_getfsstat system call, a NULL pointer dereference can occur. Unprivileged authenticated local users may be able to cause a denial of service.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17154

CWE : Common Weakness Enumeration

%idName
100 %CWE-476NULL Pointer Dereference

CPE : Common Platform Enumeration

TypeDescriptionCount
Os86

Sources (Detail)

SourceUrl
CONFIRM https://security.FreeBSD.org/advisories/FreeBSD-EN-18:10.syscall.asc

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2018-11-23 17:19:58
  • Multiple Updates
2018-09-28 17:19:38
  • First insertion