Vulnerability Details CVE-2017-5123
Insufficient data validation in waitid allowed an user to escape sandboxes on Linux.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 82.7%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 4.6
References
- https://crbug.com/772848
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=96ca579a1ecc943b75beba58bebb0356f6cc4b51
- https://security.netapp.com/advisory/ntap-20211223-0003/
- https://crbug.com/772848
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=96ca579a1ecc943b75beba58bebb0356f6cc4b51
- https://security.netapp.com/advisory/ntap-20211223-0003/
Products affected by CVE-2017-5123
-
cpe:2.3:a:netapp:cloud_backup:-
-
cpe:2.3:h:netapp:h300e:-
-
cpe:2.3:h:netapp:h300s:-
-
cpe:2.3:h:netapp:h410s:-
-
cpe:2.3:h:netapp:h500e:-
-
cpe:2.3:h:netapp:h500s:-
-
cpe:2.3:h:netapp:h700e:-
-
cpe:2.3:h:netapp:h700s:-
-
cpe:2.3:o:linux:linux_kernel:4.13
-
cpe:2.3:o:linux:linux_kernel:4.13.1
-
cpe:2.3:o:linux:linux_kernel:4.13.2
-
cpe:2.3:o:linux:linux_kernel:4.13.3
-
cpe:2.3:o:linux:linux_kernel:4.13.4
-
cpe:2.3:o:linux:linux_kernel:4.13.5
-
cpe:2.3:o:linux:linux_kernel:4.13.6
-
cpe:2.3:o:netapp:h300e_firmware:-
-
cpe:2.3:o:netapp:h300s_firmware:-
-
cpe:2.3:o:netapp:h410s_firmware:-
-
cpe:2.3:o:netapp:h500e_firmware:-
-
cpe:2.3:o:netapp:h500s_firmware:-
-
cpe:2.3:o:netapp:h700e_firmware:-
-
cpe:2.3:o:netapp:h700s_firmware:-