cbcvebase.
CVE-2018-12904
published 2018-06-27

CVE-2018-12904: In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially…

PriorityP424medium4.9CVSS 3.0
AVLACHPRNUINSUCLILAL
EXPLOIT
EPSS
1.18%
63.9th percentile
In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial of service attacks due to lack of checking of CPL.

Affected

9 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
debianlinux< linux 4.16.16-1 (bookworm)linux 4.16.16-1 (bookworm)
linuxlinux_kernel< 4.17.24.17.2
linuxlinux_kernel>= 0 < 4.16.16-14.16.16-1
linuxlinux_kernel>= 0 < 4.16.16-14.16.16-1
linuxlinux_kernel>= 0 < 4.16.16-14.16.16-1
linuxlinux_kernel>= 0 < 4.16.16-14.16.16-1
linuxlinux_kernel>= 0 < 4.15.0-33.364.15.0-33.36

CVSS provenance

nvdv3.04.9MEDIUMCVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
nvdv2.04.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
osv5.5MEDIUM
vendor_ubuntu5.5MEDIUM
vendor_debian4.9MEDIUM
vendor_redhat4.9MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.