CVE-2018-10897

moderate-risk

Published 2018-08-01

A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path traversal. If reposync is running with heightened privileges on a targeted system, this flaw could potentially result in system compromise via the overwriting of critical system files. Version 1.1.31 and older are believed to be affected.

Do I need to act?

2.6% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.1/10 High

NETWORK / HIGH complexity

Affected Products (8)

Yum-Utils

Virtualization

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Workstation

Affected Vendors

Redhat Rpm

References (18)

Third Party Advisory http://www.securitytracker.com/id/1041594

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:2284

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:2285

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:2626

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10897

Patch https://github.com/rpm-software-management/yum-utils/commit/6a8de061f8fdc885e74e...

Patch https://github.com/rpm-software-management/yum-utils/commit/7554c0133eb830a71dc0...

Third Party Advisory https://github.com/rpm-software-management/yum-utils/pull/43

Third Party Advisory https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+Struxur...