CVE-2018-16359 Information

Description

Google gVisor before 2018-08-23 within the seccomp sandbox permits access to the renameat system call which allows attackers to rename files on the host OS.

CVSS Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N

Reference

https://bugs.chromium.org/p/project-zero/issues/detail?id=1632 https://github.com/google/gvisor/commit/001a4c2493b13a43d62c7511fb509a959ae4abc2

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

CHANGED

Integrity Impact

NONE

Availability Impact

HIGH

Base Score

NONE

Base Severity

6.8