CVE-2018-15473 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 99%

Vendor	Product	Version
openbsd	openssh	𝑥 ≤ 7.7
debian	debian_linux	8.0
debian	debian_linux	9.0
redhat	enterprise_linux_desktop	6.0
redhat	enterprise_linux_desktop	7.0
redhat	enterprise_linux_server	6.0
redhat	enterprise_linux_server	7.0
redhat	enterprise_linux_workstation	6.0
redhat	enterprise_linux_workstation	7.0
canonical	ubuntu_linux	14.04
canonical	ubuntu_linux	16.04
canonical	ubuntu_linux	18.04
netapp	cn1610_firmware	-
netapp	aff_baseboard_management_controller	-
netapp	cloud_backup	-
netapp	data_ontap_edge	-
netapp	fas_baseboard_management_controller	-
netapp	oncommand_unified_manager	9.4 ≤
netapp	ontap_select_deploy	-
netapp	service_processor	-
netapp	steelstore_cloud_integrated_storage	-
netapp	virtual_storage_console	7.2 ≤
netapp	clustered_data_ontap	-
netapp	data_ontap	-
netapp	vasa_provider	7.2 ≤
netapp	storage_replication_adapter	7.2 ≤
oracle	sun_zfs_storage_appliance_kit	8.8.6
siemens	scalance_x204rna_firmware	𝑥 < 3.2.7

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

openssh

bullseye (security)	1:8.4p1-5+deb11u3 fixed
bullseye	1:8.4p1-5+deb11u3 fixed
bookworm	1:9.2p1-2+deb12u3 fixed
bookworm (security)	1:9.2p1-2+deb12u3 fixed
sid	1:9.9p1-3 fixed
trixie	1:9.9p1-3 fixed

Ubuntu Releases

Ubuntu Product

Codename

openssh

hirsute	not-affected
groovy	not-affected
focal	not-affected
eoan	not-affected
disco	not-affected
cosmic	Fixed 1:7.7p1-4 released
bionic	Fixed 1:7.6p1-4ubuntu0.1 released
xenial	Fixed 1:7.2p2-4ubuntu2.6 released
trusty	Fixed 1:6.6p1-2ubuntu2.11 released

openssh-ssh1

hirsute	not-affected
groovy	not-affected
focal	not-affected
eoan	not-affected
disco	not-affected
cosmic	not-affected
bionic	not-affected
xenial	dne
trusty	dne

Known Exploits!

Common Weakness Enumeration

CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
The program contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

References

http://www.openwall.com/lists/oss-security/2018/08/15/5

http://www.securityfocus.com/bid/105140

http://www.securitytracker.com/id/1041487

https://access.redhat.com/errata/RHSA-2019:0711

https://access.redhat.com/errata/RHSA-2019:2143

https://bugs.debian.org/906236

https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

https://github.com/openbsd/src/commit/779974d35b4859c07bc3cb8a12c74b43b0a7d1e0

https://lists.debian.org/debian-lts-announce/2018/08/msg00022.html

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0011

https://security.gentoo.org/glsa/201810-03

https://security.netapp.com/advisory/ntap-20181101-0001/

https://usn.ubuntu.com/3809-1/

https://www.debian.org/security/2018/dsa-4280

https://www.exploit-db.com/exploits/45210/

https://www.exploit-db.com/exploits/45233/

https://www.exploit-db.com/exploits/45939/

https://www.oracle.com/security-alerts/cpujan2020.html

http://www.openwall.com/lists/oss-security/2018/08/15/5

http://www.securityfocus.com/bid/105140

http://www.securitytracker.com/id/1041487

https://access.redhat.com/errata/RHSA-2019:0711

https://access.redhat.com/errata/RHSA-2019:2143

https://bugs.debian.org/906236

https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

https://github.com/openbsd/src/commit/779974d35b4859c07bc3cb8a12c74b43b0a7d1e0

https://lists.debian.org/debian-lts-announce/2018/08/msg00022.html

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0011

https://security.gentoo.org/glsa/201810-03

https://security.netapp.com/advisory/ntap-20181101-0001/

https://usn.ubuntu.com/3809-1/

https://www.debian.org/security/2018/dsa-4280

https://www.exploit-db.com/exploits/45210/

https://www.exploit-db.com/exploits/45233/

https://www.exploit-db.com/exploits/45939/

https://www.oracle.com/security-alerts/cpujan2020.html