QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-1130

Back to search

CVE-2018-1130

Published: May 10, 2018

Modified: Aug 5, 2024

PUBLISHED

CVSS v3.0

5.5

MEDIUM

Description

Linux kernel before version 4.16-rc7 is vulnerable to a null pointer dereference in dccp_write_xmit() function in net/dccp/output.c in that allows a local user to cause a denial of service by a number of certain crafted system calls.

VendorProductVersions

unspecified

kernel

affected
kernel 4.16-rc7

Weaknesses (CWE)

CWE-476

CVSS v3.0 Details

CVSS v3.0 Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

References

RHSA-2018:3083
vendor-advisory
x_refsource_REDHAT
USN-3654-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2018:1854
vendor-advisory
x_refsource_REDHAT
USN-3697-1
vendor-advisory
x_refsource_UBUNTU
USN-3697-2
vendor-advisory
x_refsource_UBUNTU
USN-3654-2
vendor-advisory
x_refsource_UBUNTU
USN-3698-1
vendor-advisory
x_refsource_UBUNTU
USN-3656-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2018:3096
vendor-advisory
x_refsource_REDHAT
USN-3698-2
vendor-advisory
x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now