CVE-2018-1000532
published 2018-06-26CVE-2018-1000532: beep version 1.3 and up contains a External Control of File Name or Path vulnerability in --device option that can result in Local unprivileged user can…
PriorityP417medium4.7CVSS 3.0
AVLACHPRLUINSUCNINAH
EPSS
0.35%
26.8th percentile
beep version 1.3 and up contains a External Control of File Name or Path vulnerability in --device option that can result in Local unprivileged user can inhibit execution of arbitrary programs by other users, allowing DoS. This attack appear to be exploitable via The system must allow local users to run beep.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| beep_project | beep | — | — |
| beep_project | beep | >= 0 < 1.4.3-1 | 1.4.3-1 |
| beep_project | beep | >= 0 < 1.4.3-1 | 1.4.3-1 |
| beep_project | beep | >= 0 < 1.4.3-1 | 1.4.3-1 |
| beep_project | beep | >= 0 < 1.4.3-1 | 1.4.3-1 |
| debian | beep | < beep 1.4.3-1 (bookworm) | beep 1.4.3-1 (bookworm) |
CVSS provenance
nvdv3.04.7MEDIUMCVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
nvdv2.01.9LOWAV:L/AC:M/Au:N/C:N/I:N/A:P
osv4.7MEDIUM
vendor_debian4.7LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-pg7q-39qh-p6jg: beep version 1
ghsa_unreviewed·2022-05-14
CVE-2018-1000532 [MEDIUM] CWE-22 GHSA-pg7q-39qh-p6jg: beep version 1
beep version 1.3 and up contains a External Control of File Name or Path vulnerability in --device option that can result in Local unprivileged user can inhibit execution of arbitrary programs by other users, allowing DoS. This attack appear to be exploitable via The system must allow local users to run beep.
OSV
CVE-2018-1000532: beep version 1
osv·2018-06-26·CVSS 4.7
CVE-2018-1000532 [MEDIUM] CVE-2018-1000532: beep version 1
beep version 1.3 and up contains a External Control of File Name or Path vulnerability in --device option that can result in Local unprivileged user can inhibit execution of arbitrary programs by other users, allowing DoS. This attack appear to be exploitable via The system must allow local users to run beep.
Debian
CVE-2018-1000532: beep - beep version 1.3 and up contains a External Control of File Name or Path vulnera...
vendor_debian·2018·CVSS 4.7
CVE-2018-1000532 [MEDIUM] CVE-2018-1000532: beep - beep version 1.3 and up contains a External Control of File Name or Path vulnera...
beep version 1.3 and up contains a External Control of File Name or Path vulnerability in --device option that can result in Local unprivileged user can inhibit execution of arbitrary programs by other users, allowing DoS. This attack appear to be exploitable via The system must allow local users to run beep.
Scope: local
bookworm: resolved (fixed in 1.4.3-1)
bullseye: resolved (fixed in 1.4.3-1)
forky: resolved (fixed in 1.4.3-1)
sid: resolved (fixed in 1.4.3-1)
trixie: resolved (fixed in 1.4.3-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2018-1000532 beep: External control of file name or path via --device option [fedora-all]
bugzilla·2018-06-27·CVSS 4.7
CVE-2018-1000532 [MEDIUM] CVE-2018-1000532 beep: External control of file name or path via --device option [fedora-all]
CVE-2018-1000532 beep: External control of file name or path via --device option [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple su
Bugzilla
CVE-2018-1000532 beep: External control of file name or path via --device option
bugzilla·2018-06-27·CVSS 4.7
CVE-2018-1000532 [MEDIUM] CVE-2018-1000532 beep: External control of file name or path via --device option
CVE-2018-1000532 beep: External control of file name or path via --device option
beep version 1.3 and up contains a External Control of File Name or Path vulnerability in --device option that can allow a local unprivileged user to inhibit execution of arbitrary programs by other users, allowing DoS.
References:
https://github.com/johnath/beep/issues/11#issuecomment-379514298
Discussion:
Created beep tracking bugs for this issue:
Affects: fedora-all [bug 1595592]
---
Summary on the impact of CVE-2018-1000532:
As Fedora ships the beep package, the beep executable never changes priviledges
(via setuid or sudo). So out of the box, CVE-2018-1000532 has no effect on Fedora
users of the `beep` package.
However, Fedora users must explictly reconfigure their system for `beep` to
actually
2018-06-26
Published