CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2018-14634

Known Exploited (CISA KEV)HIGH
7.8
CVSS Severity Score
EPSS Score83.1170%
EPSS Percentile96.22th
Published2018年9月25日
Last Modified2026年1月27日

Vulnerability Description

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.

Affected Platforms (CPE)

💻
Paloaltonetworks

Pan Os

>= 7.1.0 and < 7.1.23
💻
Paloaltonetworks

Pan Os

>= 8.0.0 and < 8.0.16
💻
Paloaltonetworks

Pan Os

>= 8.1.0 and < 8.1.7
📦
F5

Big Ip Access Policy Manager

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Access Policy Manager

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Access Policy Manager

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Access Policy Manager

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Access Policy Manager

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Advanced Firewall Manager

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Advanced Firewall Manager

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Advanced Firewall Manager

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Advanced Firewall Manager

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Advanced Firewall Manager

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Analytics

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Analytics

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Analytics

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Analytics

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Analytics

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Application Acceleration Manager

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Application Acceleration Manager

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Application Acceleration Manager

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Application Acceleration Manager

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Application Acceleration Manager

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Application Security Manager

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Application Security Manager

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Application Security Manager

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Application Security Manager

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Application Security Manager

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Domain Name System

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Domain Name System

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Domain Name System

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Domain Name System

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Domain Name System

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Edge Gateway

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Edge Gateway

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Edge Gateway

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Edge Gateway

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Edge Gateway

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Fraud Protection Service

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Fraud Protection Service

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Fraud Protection Service

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Fraud Protection Service

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Fraud Protection Service

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Global Traffic Manager

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Global Traffic Manager

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Global Traffic Manager

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Global Traffic Manager

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Global Traffic Manager

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Link Controller

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Link Controller

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Link Controller

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Link Controller

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Link Controller

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Local Traffic Manager

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Local Traffic Manager

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Local Traffic Manager

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Local Traffic Manager

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Local Traffic Manager

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Policy Enforcement Manager

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Policy Enforcement Manager

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Policy Enforcement Manager

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Policy Enforcement Manager

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Policy Enforcement Manager

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Ip Webaccelerator

>= 11.2.1 and < 11.6.4
📦
F5

Big Ip Webaccelerator

>= 12.1.0 and < 12.1.5
📦
F5

Big Ip Webaccelerator

>= 13.0.0 and < 13.1.1.5
📦
F5

Big Ip Webaccelerator

>= 14.0.0 and < 14.0.1.1
📦
F5

Big Ip Webaccelerator

>= 14.1.0 and < 14.1.0.6
📦
F5

Big Iq Centralized Management

>= 5.0.0 and <= 5.4.0
📦
F5

Big Iq Centralized Management

>= 6.0.0 and <= 6.0.1
📦
F5

Big Iq Centralized Management

>= 7.0.0 and <= 7.1.0
📦
F5

Big Iq Centralized Management

= 4.6.0
📦
F5

Big Iq Cloud And Orchestration

= 1.0.0
📦
F5

Enterprise Manager

= 3.1.1
📦
F5

Iworkflow

>= 2.2.0 and <= 2.3.0
📦
F5

Traffix Signaling Delivery Controller

>= 5.0.0 and <= 5.1.0
📦
F5

Traffix Signaling Delivery Controller

= 4.4.0
💻
Linux

Linux Kernel

>= 2.6.0 and <= 2.6.39.4
💻
Linux

Linux Kernel

>= 3.10 and <= 3.10.102
💻
Linux

Linux Kernel

>= 4.14 and <= 4.14.54
💻
Redhat

Enterprise Linux Desktop

= 6.0
💻
Redhat

Enterprise Linux Desktop

= 7.0
💻
Redhat

Enterprise Linux Server

= 6.0
💻
Redhat

Enterprise Linux Server

= 7.0
💻
Redhat

Enterprise Linux Server Aus

= 6.5
💻
Redhat

Enterprise Linux Server Aus

= 6.6
💻
Redhat

Enterprise Linux Server Aus

= 7.6
💻
Redhat

Enterprise Linux Server Eus

= 6.7
💻
Redhat

Enterprise Linux Server Eus

= 7.5
💻
Redhat

Enterprise Linux Server Eus

= 7.6
💻
Redhat

Enterprise Linux Server Tus

= 6.6
💻
Redhat

Enterprise Linux Server Tus

= 7.6
💻
Redhat

Enterprise Linux Workstation

= 6.0
💻
Redhat

Enterprise Linux Workstation

= 7.0
💻
Canonical

Ubuntu Linux

= 12.04
💻
Canonical

Ubuntu Linux

= 14.04
📦
Netapp

Snapprotect

All versions

References & Advisories

🔗 http://www.openwall.com/lists/oss-security/2021/07/20/2
🔗 http://www.securityfocus.com/bid/105407
🔗 https://access.redhat.com/errata/RHSA-2018:2748
🔗 https://access.redhat.com/errata/RHSA-2018:2763
🔗 https://access.redhat.com/errata/RHSA-2018:2846
🔗 https://access.redhat.com/errata/RHSA-2018:2924
🔗 https://access.redhat.com/errata/RHSA-2018:2925
🔗 https://access.redhat.com/errata/RHSA-2018:2933

相關漏洞威脅

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...

CVE-2012-659210.0

Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.5 allows remote attackers to execute arbitrary commands via unspecifi...

CVE-2019-1744010.0

Improper restriction of communications to Log Forwarding Card (LFC) on PA-7000 Series devices with second-generation Switch Manage...

CVE-2012-659310.0

Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.4 allows remote attackers to execute arbitrary commands via unspecifi...