CVE-2018-5189

CVE Database · CVE-2018-5189

CVE-2018-5189

· N/AModified

CVSS v3.1

N/A

EPSS

1.23%

Published

Jan 11, 2018

Modified

Nov 21, 2024

Public PoC / Exploit (2)

All weaponized →

Exploit-DBJungo Windriver 12.5.1 - Local Privilege Escalation TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Race condition in Jungo Windriver 12.5.1 allows local users to cause a denial of service (buffer overflow) or gain system privileges by flipping pool buffer size, aka a "double fetch" vulnerability.

Weaknesses (CWE)

CWE-119

Affected Products (1)

jungo · windriver (up to 12.6.0)vulnerable

References (4)

https://www.exploit-db.com/exploits/43494/

Third Party AdvisoryVDB Entry

https://www.fidusinfosec.com/jungo-windriver-code-execution-cve-2018-5189/

Third Party Advisory

https://www.exploit-db.com/exploits/43494/

Third Party AdvisoryVDB Entry

https://www.fidusinfosec.com/jungo-windriver-code-execution-cve-2018-5189/

Third Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs