CVE-2018-16866

Published Jan 11, 2019

Last updated 2 years ago

CVSS low 3.3

Overview

Description: An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 3.3
Impact score: 1.4
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Severity: LOW

CVSS 3.0

Type: Secondary
Base score: 4.3
Impact score: 1.4
Exploitability score: 2.8
Vector string: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

secalert@redhat.com: CWE-125
nvd@nist.gov: CWE-125

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:systemd_project:systemd:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "026806D8-B8D6-4C1C-8E1F-32096D38C937",
            "versionEndIncluding": "239",
            "versionStartIncluding": "221"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07C312A0-CD2C-4B9C-B064-6409B25C278F"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:netapp:active_iq_performance_analytics_services:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83077160-BB98-408B-81F0-8EF9E566BF28"
          },
          {
            "criteria": "cpe:2.3:a:netapp:element_software:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD53FA62-3E99-4D0B-8C62-4517F5CB8DE9"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F6FA12B-504C-4DBF-A32E-0548557AA2ED"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_compute_node_eus:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35A9FD70-E9CA-43AF-A453-E41EAB430E7F"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_\\(structure_a\\):7_s390x:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6207D51C-883B-4B65-B9BF-408197839BE5"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7614783-C95A-4CBC-81D9-21A044001B6E"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CDCFF34-6F1D-45A1-BE37-6A0E17B04801"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian_eus:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83D5DE4F-4616-488D-ABA8-FD608784237E"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B4A684C7-88FD-43C4-9BDB-AE337FCBD0AB"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "656C4506-ECDD-44D7-BFC7-35B1A3E33DF2"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_scientific_computing:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37CE1DC7-72C5-483C-8921-0B462C8284D1"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D99A687E-EAE6-417E-A88E-D0082BC194CD"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B353CE99-D57C-465B-AAB0-73EF581127D1"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:7.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C81C5D4E-3CAD-43CE-82BC-B0619CA3A74A"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57B5CF5A-D48E-4AD0-91E2-F5BDD44B7A66"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5F7E11E-FB34-4467-8919-2B6BEAABF665"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B76AA310-FEC7-497F-AF04-C3EC1E76C4CC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:7.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C7E9628-0915-4C49-8929-F5E060A20CBB"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C450C83-695F-4408-8B4F-0E7D6DDAE345"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References