CVE-2018-12904 — MEDIUM (4.9)

Q: How severe is CVE-2018-12904?

CVE-2018-12904 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-12904?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Canonical Ubuntu Linux.

Vulnerability Description

In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial of service attacks due to lack of checking of CPL.

CVSS Score

4.9

MEDIUM

CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	< 4.17.2
Canonical	Ubuntu Linux	16.04

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=727ba7PatchVendor Advisory
https://bugs.chromium.org/p/project-zero/issues/detail?id=1589ExploitThird Party Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.17.2Release NotesVendor Advisory
https://github.com/torvalds/linux/commit/727ba748e110b4de50d142edca9d6a9b7e6111dPatchThird Party Advisory
https://usn.ubuntu.com/3752-1/Third Party Advisory
https://usn.ubuntu.com/3752-2/Third Party Advisory
https://usn.ubuntu.com/3752-3/Third Party Advisory
https://www.exploit-db.com/exploits/44944/ExploitThird Party AdvisoryVDB Entry
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=727ba7PatchVendor Advisory
https://bugs.chromium.org/p/project-zero/issues/detail?id=1589ExploitThird Party Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.17.2Release NotesVendor Advisory
https://github.com/torvalds/linux/commit/727ba748e110b4de50d142edca9d6a9b7e6111dPatchThird Party Advisory
https://usn.ubuntu.com/3752-1/Third Party Advisory
https://usn.ubuntu.com/3752-2/Third Party Advisory
https://usn.ubuntu.com/3752-3/Third Party Advisory

FAQ

What is CVE-2018-12904?

CVE-2018-12904 is a vulnerability with a CVSS score of 4.9 (MEDIUM). In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial ...

How severe is CVE-2018-12904?

CVE-2018-12904 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-12904?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Canonical Ubuntu Linux.