QwikSec

Security Database

CVE

CWE

Training

CVE-2017-7518

Published: Jul 30, 2018

Modified: Aug 5, 2024

PUBLISHED

CVSS v3.0

5.5

MEDIUM

Description

A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges inside the guest. Linux guests are not affected by this.

Vendor	Product	Versions
[UNKNOWN]	Kernel:	affected `4.12`

Weaknesses (CWE)

CVSS v3.0 Details

CVSS v3.0 Vector

CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

References

vendor-advisory

x_refsource_REDHAT

https://access.redhat.com/articles/3290921

x_refsource_CONFIRM

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_UBUNTU

vdb-entry

x_refsource_SECTRACK

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7518

x_refsource_CONFIRM

[oss-security] 20170623 CVE-2017-7518 Kernel: KVM: debug exception via syscall emulation

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_DEBIAN

[kvm] 20170622 [PATCH] KVM: x86: fix singlestepping over syscall

mailing-list

x_refsource_MLIST

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.