CVE-2018-16881

2019-01-2518:29:00

Google

osv.dev

6.4 Medium

AI Score

Confidence

High

0.02 Low

EPSS

Percentile

88.9%

JSON

A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash. Versions before 8.27.0 are vulnerable.

CPENameOperatorVersion
rsyslogeq6.4.3.unfinished
rsyslogeq7.4.6
rsyslogeq3.16.0
rsyslogeq7.4.0
rsyslogeq3.18.5
rsyslogeq1-15-1
rsyslogeq3-11-1
rsyslogeq4.1.0
rsyslogeq3.19.11
rsyslogeq5.6.4

Name	Operator	Version
rsyslog	eq	6.4.3.unfinished
rsyslog	eq	7.4.6
rsyslog	eq	3.16.0
rsyslog	eq	7.4.0
rsyslog	eq	3.18.5
rsyslog	eq	1-15-1
rsyslog	eq	3-11-1
rsyslog	eq	4.1.0
rsyslog	eq	3.19.11
rsyslog	eq	5.6.4