PT-2018-1708 · Red Hat+1 · Networkmanager+3

Felix Wilhelm

Published

2018-05-15

Updated

2023-02-12

CVE-2018-1111

CVSS v2.0

7.9

High

Vector

AV:A/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Red Hat Enterprise Linux versions 6 and 7 Fedora versions 28 and earlier

Description: The issue is related to a command injection flaw in the NetworkManager integration script included in the DHCP client packages. This flaw can be exploited by a malicious DHCP server or an attacker on the local network who can spoof DHCP responses, allowing them to execute arbitrary commands with root privileges on systems using NetworkManager and configured to obtain network configuration using the DHCP protocol. The vulnerability is caused by insufficient input data sanitization.

Recommendations: For Red Hat Enterprise Linux versions 6 and 7, consider disabling the NetworkManager integration script until a patch is available. For Fedora versions 28 and earlier, restrict the use of the DHCP client packages to minimize the risk of exploitation. As a temporary workaround, avoid using the DHCP protocol to obtain network configuration until the issue is resolved.

Exploit

Fix

OS Command Injection

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78CWE-77

Related Identifiers

BDU:2018-01268

CESA-2018_1453

CESA-2018_1454

CVE-2018-1111

ELSA-2018-1453

ELSA-2018-1454

RHSA-2018:1453

RHSA-2018:1454

RHSA-2018:1455

RHSA-2018:1456

RHSA-2018:1457

RHSA-2018:1458

RHSA-2018:1459

RHSA-2018:1460

RHSA-2018:1461

RHSA-2018:1524

RHSA-2018:1525

RHSA-2018_1453

RHSA-2018_1454

Affected Products

Centos

Fedora

Networkmanager

Red Hat

PT-2018-1708 · Red Hat+1 · Networkmanager+3

CVE-2018-1111

Weakness Enumeration

Related Identifiers

Affected Products

References · 35