CVE-2018-18928
published 2018-11-04CVE-2018-18928: International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in…
PriorityP342critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
2.92%
85.3th percentile
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | icu | < icu 63.1-3 (bookworm) | icu 63.1-3 (bookworm) |
| icu-project | international_components_for_unicode | — | — |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
cisa_ics·2023-12-14
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
ICS Advisory
##
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
Release DateDecember 14, 2023
Alert CodeICSA-23-348-10
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Siemens
- Equipment: SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
- Vulnerabilities: Improper Restriction of XML External Entity Reference, Time-of-check Time-of-use (TOCTOU) Race Condition, Command Injection, Miss
Red Hat
icu: integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp
vendor_redhat·2018-10-30·CVSS 9.8
CVE-2018-18928 [CRITICAL] CWE-190 icu: integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp
icu: integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.
Statement: This issue did not affect the versions of icu as shipped with Red Hat Enterprise Linux 5, 6 and 7 as they did not include the vulnerable class.
This issue did not affect the versions of java-1.6.0-openjdk, java-1.7.0-openjdk and java-1.8.0-openjdk as shipped with Red Hat Enterprise Linux 5, 6 and 7 as they did not include the vulnerable class.
This issue did not affect the versions of webkitgtk4 as shipped with Red Hat Enterprise Linux 7 as they did not include the vulnerable class.
Package: icu
Debian
CVE-2018-18928: icu - International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflo...
vendor_debian·2018·CVSS 9.8
CVE-2018-18928 [CRITICAL] CVE-2018-18928: icu - International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflo...
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.
Scope: local
bookworm: resolved (fixed in 63.1-3)
bullseye: resolved (fixed in 63.1-3)
forky: resolved (fixed in 63.1-3)
sid: resolved (fixed in 63.1-3)
trixie: resolved (fixed in 63.1-3)
GHSA
GHSA-m2ch-6888-5mgr: International Components for Unicode (ICU) for C/C++ 63
ghsa_unreviewed·2022-05-14
CVE-2018-18928 [CRITICAL] CWE-190 GHSA-m2ch-6888-5mgr: International Components for Unicode (ICU) for C/C++ 63
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.
OSV
CVE-2018-18928: International Components for Unicode (ICU) for C/C++ 63
osv·2018-11-04·CVSS 9.8
CVE-2018-18928 [CRITICAL] CVE-2018-18928: International Components for Unicode (ICU) for C/C++ 63
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2018-18928 icu: integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp
bugzilla·2018-11-05·CVSS 9.8
CVE-2018-18928 [CRITICAL] CVE-2018-18928 icu: integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp
CVE-2018-18928 icu: integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.
References:
https://bugs.chromium.org/p/chromium/issues/detail?id=900059
https://github.com/unicode-org/icu/commit/53d8c8f3d181d87a6aa925b449b51c4a2c922a51
https://unicode-org.atlassian.net/browse/ICU-20246
Discussion:
Created icu tracking bugs for this issue:
Affects: fedora-all [bug 1646703]
---
Statement:
This issue did not affect the versions of icu as shipped with Red Hat Enterprise Linux 5, 6 and 7 as they did not include the vulnerable class.
This issue did not affect the versio
Bugzilla
CVE-2018-18928 icu: integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp [fedora-all]
bugzilla·2018-11-05·CVSS 9.8
CVE-2018-18928 [CRITICAL] CVE-2018-18928 icu: integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp [fedora-all]
CVE-2018-18928 icu: integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit
https://bugs.chromium.org/p/chromium/issues/detail?id=900059https://github.com/unicode-org/icu/commit/53d8c8f3d181d87a6aa925b449b51c4a2c922a51https://unicode-org.atlassian.net/browse/ICU-20246https://bugs.chromium.org/p/chromium/issues/detail?id=900059https://github.com/unicode-org/icu/commit/53d8c8f3d181d87a6aa925b449b51c4a2c922a51https://unicode-org.atlassian.net/browse/ICU-20246
2018-11-04
Published