CVE-2018-16359

Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
VendorProductVersion
googlegvisor
𝑥
< 2018-08-23
𝑥
= Vulnerable software versions
References
https://bugs.chromium.org/p/project-zero/issues/detail?id=1632
https://github.com/google/gvisor/commit/001a4c2493b13a43d62c7511fb509a959ae4abc2
https://bugs.chromium.org/p/project-zero/issues/detail?id=1632
https://github.com/google/gvisor/commit/001a4c2493b13a43d62c7511fb509a959ae4abc2