CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-16359

Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.4%

CVSS Severity

CVSS v3 Score 6.8

CVSS v2 Score 7.1

References

https://bugs.chromium.org/p/project-zero/issues/detail?id=1632
https://github.com/google/gvisor/commit/001a4c2493b13a43d62c7511fb509a959ae4abc2
https://bugs.chromium.org/p/project-zero/issues/detail?id=1632
https://github.com/google/gvisor/commit/001a4c2493b13a43d62c7511fb509a959ae4abc2

Products affected by CVE-2018-16359

Google » Gvisor » Version: N/A

cpe:2.3:a:google:gvisor:-
Google » Gvisor » Version: 2018-08-22

cpe:2.3:a:google:gvisor:2018-08-22

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-16359

Products

Pricing

Contact Us