CVE-2018-6559 Vulnerability Details

  /     /     /  

CVE-2018-6559 Metadata Quick Info

CVE Published: 26/10/2018 | CVE Updated: 16/09/2024 | CVE Year: 2018
Source: canonical | Vendor: Canonical Ltd. | Product: Linux kernel, as used in Ubuntu 18.04 LTS and Ubuntu 18.10
Status : PUBLISHED

---

CVE-2018-6559 Description

The Linux kernel, as used in Ubuntu 18.04 LTS and Ubuntu 18.10, allows local users to obtain names of files in which they would not normally be able to access via an overlayfs mount inside of a user namespace.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID: CWE-200
CWE Name: CWE-200: Information Exposure
Source: Canonical Ltd.

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).