CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-6198

w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 36.9%

CVSS Severity

CVSS v3 Score 4.7

CVSS v2 Score 3.3

References

Products affected by CVE-2018-6198

Tats » W3m » Version: 0.5.1

cpe:2.3:a:tats:w3m:0.5.1
Tats » W3m » Version: 0.5.1-1

cpe:2.3:a:tats:w3m:0.5.1-1
Tats » W3m » Version: 0.5.1-3

cpe:2.3:a:tats:w3m:0.5.1-3
Tats » W3m » Version: 0.5.1-4

cpe:2.3:a:tats:w3m:0.5.1-4
Tats » W3m » Version: 0.5.1-5

cpe:2.3:a:tats:w3m:0.5.1-5
Tats » W3m » Version: 0.5.1-5.1

cpe:2.3:a:tats:w3m:0.5.1-5.1
Tats » W3m » Version: 0.5.2

cpe:2.3:a:tats:w3m:0.5.2
Tats » W3m » Version: 0.5.2-1

cpe:2.3:a:tats:w3m:0.5.2-1
Tats » W3m » Version: 0.5.2-10

cpe:2.3:a:tats:w3m:0.5.2-10
Tats » W3m » Version: 0.5.2-2

cpe:2.3:a:tats:w3m:0.5.2-2
Tats » W3m » Version: 0.5.2-2.1

cpe:2.3:a:tats:w3m:0.5.2-2.1
Tats » W3m » Version: 0.5.2-3

cpe:2.3:a:tats:w3m:0.5.2-3
Tats » W3m » Version: 0.5.2-4

cpe:2.3:a:tats:w3m:0.5.2-4
Tats » W3m » Version: 0.5.2-5

cpe:2.3:a:tats:w3m:0.5.2-5
Tats » W3m » Version: 0.5.2-6

cpe:2.3:a:tats:w3m:0.5.2-6
Tats » W3m » Version: 0.5.2-7

cpe:2.3:a:tats:w3m:0.5.2-7
Tats » W3m » Version: 0.5.2-8

cpe:2.3:a:tats:w3m:0.5.2-8
Tats » W3m » Version: 0.5.2-9

cpe:2.3:a:tats:w3m:0.5.2-9
Tats » W3m » Version: 0.5.3

cpe:2.3:a:tats:w3m:0.5.3
Canonical » Ubuntu Linux » Version: 12.04

cpe:2.3:o:canonical:ubuntu_linux:12.04
Canonical » Ubuntu Linux » Version: 14.04

cpe:2.3:o:canonical:ubuntu_linux:14.04
Canonical » Ubuntu Linux » Version: 16.04

cpe:2.3:o:canonical:ubuntu_linux:16.04
Canonical » Ubuntu Linux » Version: 17.10

cpe:2.3:o:canonical:ubuntu_linux:17.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-6198

Products

Pricing

Contact Us