CVE-2018-11786

CWE-269Improper Privilege ManagementCWE-862Missing Authorization6 documents6 sources
Severity
8.8HIGH
EPSS
0.8%
top 26.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apache KarafApache Software Foundation Apache Karaf
Timeline
PublishedSep 18
Latest updateDec 21

Description

In Apache Karaf prior to 4.2.0 release, if the sshd service in Karaf is left on so an administrator can manage the running instance, any user with rights to the Karaf console can pivot and read/write any file on the file system to which the Karaf process user has access. This can be locked down a bit by using chroot to change the root directory to protect files outside of the Karaf install directory; it can be further locked down by defining a security manager policy that limits file system acce

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages3 packages

NVDapache/karaf< 4.2.0
CVEListV5apache_software_foundation/apache_karafprior to 4.2.0 release

Patches

Patch: karaf.apache.orgPatch: issues.apache.orgPatch: karaf.apache.org

🔴Vulnerability Details

3
GHSA
Improper Privilege Management in Apache Karaf2018-12-21
OSV
Improper Privilege Management in Apache Karaf2018-12-21
CVEList
CVE-2018-11786: In Apache Karaf prior to 42018-09-18

📋Vendor Advisories

1
Red Hat
karaf: SSH RBAC security enforcement2018-09-18

💬Community

1
Bugzilla
CVE-2018-11786 karaf: SSH RBAC security enforcement2018-09-19
CVE-2018-11786 (HIGH CVSS 8.8) | In Apache Karaf prior to 4.2.0 rele | cvebase.io