Published: 21/08/2018 Updated: 21/11/2018
CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4
CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1
VMScore: 392
Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

The MOTD update script in the base-files package in Ubuntu 18.04 LTS prior to 10.1ubuntu2.2, and Ubuntu 18.10 prior to 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled.

Vulnerability Trend

Affected Products

Vendor Product Versions
CanonicalUbuntu Linux18.04, 18.10

Vendor Advisories

base-files could be made to hang or overwrite files as the administrator ...
A Security Vulnerability affects IBM Cloud Private MariaDB ...