CVE-2018-6892

high-risk

Published 2018-02-11

An issue was discovered in CloudMe before 1.11.0. An unauthenticated remote attacker that can connect to the "CloudMe Sync" client application listening on port 8888 can send a malicious payload causing a buffer overflow condition. This will result in an attacker controlling the program's execution flow and allowing arbitrary code execution.

Do I need to act?

89.7% chance of exploitation in next 30 days

EPSS score — higher than 10% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

4 public exploits available

44175, 44027, 45197 and 1 more

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (1)

Sync

Affected Vendors

Cloudme

References (20)

Exploit http://hyp3rlinx.altervista.org/advisories/CLOUDME-SYNC-UNAUTHENTICATED-REMOTE-B...

http://packetstormsecurity.com/files/157407/CloudMe-1.11.2-Buffer-Overflow.html

http://packetstormsecurity.com/files/158716/CloudMe-1.11.2-SEH-Buffer-Overflow.h...

http://packetstormsecurity.com/files/159327/CloudMe-1.11.2-Buffer-Overflow.html

Exploit https://blogs.securiteam.com/index.php/archives/3669

Exploit https://www.exploit-db.com/exploits/44027/

Exploit https://www.exploit-db.com/exploits/44175/

Exploit https://www.exploit-db.com/exploits/45197/

Exploit https://www.exploit-db.com/exploits/46250/

https://www.exploit-db.com/exploits/48840