CVE-2018-1108 Vulnerability Details

  /     /     /  

CVE-2018-1108 Metadata Quick Info

CVE Published: 21/05/2018 | CVE Updated: 05/08/2024 | CVE Year: 2018
Source: redhat | Vendor: kernel | Product: drivers
Status : PUBLISHED

CVE-2018-1108 Description

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel\'s implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID: CWE-330
CWE Name: CWE-330
Source: kernel

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).

Last added CVEs

▸ CVE-2024-9999 ◂
Discovered: 12/11/2024
Status: PUBLISHED
▸ CVE-2024-9997 ◂
Discovered: 29/10/2024
Status: PUBLISHED
▸ CVE-2024-9996 ◂
Discovered: 29/10/2024
Status: PUBLISHED



Tags:
CVE-2018-1108 Vulnerability Details