CVE-2018-16359

2 documents2 sources

Severity

6.8MEDIUM

EPSS

0.1%

top 69.65%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Gvisor

Timeline

PublishedSep 2

Description

Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:NExploitability: 2.2 | Impact: 4.0

Affected Packages1 packages

▶NVDgoogle/gvisor< 2018-08-23

🔴Vulnerability Details

CVEList

CVE-2018-16359: Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the↗2018-09-02

▶