CVE-2019-6612 — Vulnetix

CVE-2019-6612 PUBLISHED CVSS 7.800000190734863 HIGH

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.

EPSS 0.74% · 73.3th percentile

Risk Scores

CVSS v3.0

7.800000190734863

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.74%

73.3th percentile

Affected Products

Vendor	Product	Versions
The Linux Foundation	kernel	*

Timeline

Sep 27, 2018 PoC Published
Oct 1, 2018 PoC Published
May 1, 2019 CVE Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Aug 24, 2021 EPSS Score
Dec 27, 2021 EPSS Score
Jan 6, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Feb 27, 2022 EPSS Score
Apr 1, 2022 EPSS Score
May 1, 2022 EPSS Score

References

https://support.f5.com/csp/article/K74374841 advisory
https://support.f5.com/csp/article/K21462542 advisory
https://support.f5.com/csp/article/K95275140 advisory
https://support.f5.com/csp/article/K38941195 advisory
https://support.f5.com/csp/article/K49711130 advisory
https://support.f5.com/csp/article/K00040234 advisory
https://support.f5.com/csp/article/K24401914 advisory
https://support.f5.com/csp/article/K87659521 advisory
https://support.f5.com/csp/article/K31300402 advisory
https://support.f5.com/csp/article/K82814400 advisory
https://support.f5.com/csp/article/K54252492 advisory
https://support.f5.com/csp/article/K20934447 advisory
https://support.f5.com/csp/article/K01713115 advisory
https://support.f5.com/csp/article/K25244852 advisory
RHSA-2018:3540 vendor-advisory
https://security.netapp.com/advisory/ntap-20190204-0002/ url
RHSA-2018:2925 vendor-advisory
RHSA-2018:3591 vendor-advisory
45516 exploit
USN-3775-1 vendor-advisory

…and 17 more

Open in Interactive Console →