CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15687

A race condition in chown_one() of systemd allows an attacker to cause systemd to set arbitrary permissions on arbitrary files. Affected releases are systemd versions up to and including 239.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 56.5%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.9

References

Products affected by CVE-2018-15687

Systemd Project » Systemd » Version: 235

cpe:2.3:a:systemd_project:systemd:235
Systemd Project » Systemd » Version: 236

cpe:2.3:a:systemd_project:systemd:236
Systemd Project » Systemd » Version: 237

cpe:2.3:a:systemd_project:systemd:237
Systemd Project » Systemd » Version: 238

cpe:2.3:a:systemd_project:systemd:238
Systemd Project » Systemd » Version: 239

cpe:2.3:a:systemd_project:systemd:239
Canonical » Ubuntu Linux » Version: 16.04

cpe:2.3:o:canonical:ubuntu_linux:16.04
Canonical » Ubuntu Linux » Version: 18.04

cpe:2.3:o:canonical:ubuntu_linux:18.04
Canonical » Ubuntu Linux » Version: 18.10

cpe:2.3:o:canonical:ubuntu_linux:18.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15687

Products

Pricing

Contact Us