CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-12930

ntfs_end_buffer_async_read in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service (kernel oops or panic) or possibly have unspecified other impact via a crafted ntfs filesystem.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.8%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

http://www.securityfocus.com/bid/104588
https://access.redhat.com/errata/RHSA-2019:0641
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1763403
https://marc.info/?l=linux-ntfs-dev&m=152413769810234&w=2
http://www.securityfocus.com/bid/104588
https://access.redhat.com/errata/RHSA-2019:0641
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1763403
https://marc.info/?l=linux-ntfs-dev&m=152413769810234&w=2

Products affected by CVE-2018-12930

Canonical » Ubuntu Linux » Version: 16.04.4

cpe:2.3:o:canonical:ubuntu_linux:16.04.4
Linux » Linux Kernel » Version: 4.15

cpe:2.3:o:linux:linux_kernel:4.15

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-12930

Products

Pricing

Contact Us