CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-14775

tss_alloc in sys/arch/i386/i386/gdt.c in OpenBSD 6.2 and 6.3 has a Local Denial of Service (system crash) due to incorrect I/O port access control on the i386 architecture.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.6%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.9

References

http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/arch/i386/i386/gdt.c
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/arch/i386/i386/gdt.c.diff?r1=1.37&r2=1.37.8.1&f=h
http://www.securitytracker.com/id/1041550
https://ftp.openbsd.org/pub/OpenBSD/patches/6.2/common/020_ioport.patch.sig
https://ftp.openbsd.org/pub/OpenBSD/patches/6.3/common/015_ioport.patch.sig
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/arch/i386/i386/gdt.c
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/arch/i386/i386/gdt.c.diff?r1=1.37&r2=1.37.8.1&f=h
http://www.securitytracker.com/id/1041550
https://ftp.openbsd.org/pub/OpenBSD/patches/6.2/common/020_ioport.patch.sig
https://ftp.openbsd.org/pub/OpenBSD/patches/6.3/common/015_ioport.patch.sig

Products affected by CVE-2018-14775

Openbsd » Openbsd » Version: 6.2

cpe:2.3:o:openbsd:openbsd:6.2
Openbsd » Openbsd » Version: 6.3

cpe:2.3:o:openbsd:openbsd:6.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-14775

Products

Pricing

Contact Us