CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1000028

Linux kernel version after commit bdcf0a423ea1 - 4.15-rc4+, 4.14.8+, 4.9.76+, 4.4.111+ contains a Incorrect Access Control vulnerability in NFS server (nfsd) that can result in remote users reading or writing files they should not be able to via NFS. This attack appear to be exploitable via NFS server must export a filesystem with the "rootsquash" options enabled. This vulnerability appears to have been fixed in after commit 1995266727fa.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.2%

CVSS Severity

CVSS v3 Score 7.4

CVSS v2 Score 5.8

References

Products affected by CVE-2018-1000028

Linux » Linux Kernel » Version: 4.14.10

cpe:2.3:o:linux:linux_kernel:4.14.10
Linux » Linux Kernel » Version: 4.14.11

cpe:2.3:o:linux:linux_kernel:4.14.11
Linux » Linux Kernel » Version: 4.14.12

cpe:2.3:o:linux:linux_kernel:4.14.12
Linux » Linux Kernel » Version: 4.14.13

cpe:2.3:o:linux:linux_kernel:4.14.13
Linux » Linux Kernel » Version: 4.14.14

cpe:2.3:o:linux:linux_kernel:4.14.14
Linux » Linux Kernel » Version: 4.14.15

cpe:2.3:o:linux:linux_kernel:4.14.15
Linux » Linux Kernel » Version: 4.14.16

cpe:2.3:o:linux:linux_kernel:4.14.16
Linux » Linux Kernel » Version: 4.14.17

cpe:2.3:o:linux:linux_kernel:4.14.17
Linux » Linux Kernel » Version: 4.14.18

cpe:2.3:o:linux:linux_kernel:4.14.18
Linux » Linux Kernel » Version: 4.14.19

cpe:2.3:o:linux:linux_kernel:4.14.19
Linux » Linux Kernel » Version: 4.14.20

cpe:2.3:o:linux:linux_kernel:4.14.20
Linux » Linux Kernel » Version: 4.14.21

cpe:2.3:o:linux:linux_kernel:4.14.21
Linux » Linux Kernel » Version: 4.14.22

cpe:2.3:o:linux:linux_kernel:4.14.22
Linux » Linux Kernel » Version: 4.14.23

cpe:2.3:o:linux:linux_kernel:4.14.23
Linux » Linux Kernel » Version: 4.14.8

cpe:2.3:o:linux:linux_kernel:4.14.8
Linux » Linux Kernel » Version: 4.14.9

cpe:2.3:o:linux:linux_kernel:4.14.9
Linux » Linux Kernel » Version: 4.15

cpe:2.3:o:linux:linux_kernel:4.15
Linux » Linux Kernel » Version: 4.15.1

cpe:2.3:o:linux:linux_kernel:4.15.1
Linux » Linux Kernel » Version: 4.15.2

cpe:2.3:o:linux:linux_kernel:4.15.2
Linux » Linux Kernel » Version: 4.15.3

cpe:2.3:o:linux:linux_kernel:4.15.3
Linux » Linux Kernel » Version: 4.15.4

cpe:2.3:o:linux:linux_kernel:4.15.4
Linux » Linux Kernel » Version: 4.15.5

cpe:2.3:o:linux:linux_kernel:4.15.5
Linux » Linux Kernel » Version: 4.15.6

cpe:2.3:o:linux:linux_kernel:4.15.6
Linux » Linux Kernel » Version: 4.15.7

cpe:2.3:o:linux:linux_kernel:4.15.7
Linux » Linux Kernel » Version: 4.4.111

cpe:2.3:o:linux:linux_kernel:4.4.111
Linux » Linux Kernel » Version: 4.4.112

cpe:2.3:o:linux:linux_kernel:4.4.112
Linux » Linux Kernel » Version: 4.4.113

cpe:2.3:o:linux:linux_kernel:4.4.113
Linux » Linux Kernel » Version: 4.4.114

cpe:2.3:o:linux:linux_kernel:4.4.114
Linux » Linux Kernel » Version: 4.4.115

cpe:2.3:o:linux:linux_kernel:4.4.115
Linux » Linux Kernel » Version: 4.4.116

cpe:2.3:o:linux:linux_kernel:4.4.116
Linux » Linux Kernel » Version: 4.4.117

cpe:2.3:o:linux:linux_kernel:4.4.117
Linux » Linux Kernel » Version: 4.4.118

cpe:2.3:o:linux:linux_kernel:4.4.118
Linux » Linux Kernel » Version: 4.4.119

cpe:2.3:o:linux:linux_kernel:4.4.119
Linux » Linux Kernel » Version: 4.9.76

cpe:2.3:o:linux:linux_kernel:4.9.76
Linux » Linux Kernel » Version: 4.9.77

cpe:2.3:o:linux:linux_kernel:4.9.77
Linux » Linux Kernel » Version: 4.9.78

cpe:2.3:o:linux:linux_kernel:4.9.78
Linux » Linux Kernel » Version: 4.9.79

cpe:2.3:o:linux:linux_kernel:4.9.79
Linux » Linux Kernel » Version: 4.9.80

cpe:2.3:o:linux:linux_kernel:4.9.80
Linux » Linux Kernel » Version: 4.9.81

cpe:2.3:o:linux:linux_kernel:4.9.81
Linux » Linux Kernel » Version: 4.9.82

cpe:2.3:o:linux:linux_kernel:4.9.82
Linux » Linux Kernel » Version: 4.9.83

cpe:2.3:o:linux:linux_kernel:4.9.83
Linux » Linux Kernel » Version: 4.9.84

cpe:2.3:o:linux:linux_kernel:4.9.84
Linux » Linux Kernel » Version: 4.9.85

cpe:2.3:o:linux:linux_kernel:4.9.85

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1000028

Products

Pricing

Contact Us