CVE-2018-16359

Sažetak

Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS.

Reference

https://bugs.chromium.org/p/project-zero/issues/detail?id=1632
https://github.com/google/gvisor/commit/001a4c2493b13a43d62c7511fb509a959ae4abc2

CVSS

Base:	7.1
Impact:	6.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	COMPLETE	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:C/A:N

Zadnje važnije ažuriranje

03-10-2019 - 00:03

Objavljeno

02-09-2018 - 22:29