CVE-2018-1111
high-risk
Published 2018-05-17
DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. A malicious DHCP server, or an attacker on the local network able to spoof DHCP responses, could use this flaw to execute arbitrary commands with root privileges on systems using NetworkManager and configured to obtain network configuration using the DHCP protocol.
Do I need to act?
!
89.2% chance of exploitation in next 30 days
EPSS score — higher than 11% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10
High
ADJACENT_NETWORK
/ HIGH complexity
Affected Products (20)
Enterprise Virtualization
Enterprise Virtualization
Affected Vendors
References (42)
Third Party Advisory
http://www.securityfocus.com/bid/104195
Third Party Advisory
http://www.securitytracker.com/id/1040912
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1453
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1454
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1455
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1456
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1457
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1458
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1459
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1460
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1461
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1524
Vendor Advisory
https://access.redhat.com/security/vulnerabilities/3442151
Issue Tracking
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1111
and 22 more references
67
/ 100
high-risk
Severity
20/34 · Moderate
Exploitability
27/34 · High
Exposure
20/34 · Moderate