Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:12925
HistoryJan 15, 2019 - 9:23 a.m.

Arbitrary Code Execution

2019-01-1509:23:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15

0.0005 Low

EPSS

Percentile

17.1%

JSON

procps is vulnerable to arbitrary code execution attacks. The vulnerability exists as procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escalation for a local attacker who can create entries in procfs by starting processes, which could result in crashes or arbitrary code execution in proc utilities run by other users.

References

Related

ubuntucve 2
f5 2
nessus 46
cve 2
nvd 2
redhat 7
redhatcve 2
cvelist 2
prion 2
debiancve 2
osv 4
openvas 22
oraclelinux 2
fedora 2
amazon 1
ibm 7
ubuntu 2
centos 2
rosalinux 1
gentoo 1
debian 3
suse 4
zdt 1
slackware 1
cloudfoundry 1
photon 4
packetstorm 1
exploitpack 1
exploitdb 1
ubuntucve
ubuntucve
CVE-2018-1124
2018-05-17 00:00:00
CVE-2018-1126
2018-05-17 00:00:00
f5
f5
K16124204 : procps-ng vulnerability CVE-2018-1124
2020-12-28 00:00:00
K83271321 : procps-ng vulnerability CVE-2018-1126
2020-12-28 00:00:00
nessus
nessus
RHEL 7 : procps-ng (RHSA-2019:2401)
2019-08-12 00:00:00
F5 Networks BIG-IP : procps-ng vulnerability (K16124204)
2023-11-02 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : procps-ng Multiple Vulnerabilities (NS-SA-2019-0019)
2019-08-12 00:00:00
cve
cve
CVE-2018-1124
2018-05-23 13:29:00
CVE-2018-1126
2018-05-23 13:29:00
nvd
nvd
CVE-2018-1124
2018-05-23 13:29:00
CVE-2018-1126
2018-05-23 13:29:00
redhat
redhat
(RHSA-2019:2401) Important: procps-ng security update
2019-08-07 11:04:01
(RHSA-2018:2267) Important: procps security update
2018-07-26 11:32:54
(RHSA-2018:1820) Important: Red Hat Virtualization security, bug fix, and enhancement update
2018-06-11 06:46:17
redhatcve
redhatcve
CVE-2018-1124
2018-05-18 05:21:11
CVE-2018-1126
2019-10-05 13:49:59
cvelist
cvelist
CVE-2018-1124
2018-05-23 13:00:00
CVE-2018-1126
2018-05-23 13:00:00
prion
prion
Integer overflow
2018-05-23 13:29:00
Integer overflow
2018-05-23 13:29:00
debiancve
debiancve
CVE-2018-1124
2018-05-23 13:29:00
CVE-2018-1126
2018-05-23 13:29:00
osv
osv
CVE-2018-1124
2018-05-23 13:29:00
CVE-2018-1126
2018-05-23 13:29:00
procps - security update
2018-05-22 00:00:00
openvas
openvas
Fedora Update for procps-ng FEDORA-2018-de5de06754
2018-05-25 00:00:00
Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2018-1199)
2020-01-23 00:00:00
CentOS Update for procps CESA-2018:1777 centos6
2018-06-02 00:00:00
oraclelinux
oraclelinux
procps-ng security update
2018-05-23 00:00:00
procps security update
2018-05-31 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: procps-ng-3.3.12-2.fc28
2018-05-22 15:09:03
[SECURITY] Fedora 27 Update: procps-ng-3.3.10-16.fc27
2018-05-24 14:27:09
amazon
amazon
Important: procps-ng
2018-06-07 23:26:00
ibm
ibm
Security Bulletin: IBM QRadar Network Security is affected by procps-ng procps vulnerabilities
2018-07-25 14:34:03
Security Bulletin: IBM Security Guardium is affected by a Using Components with Known Vulnerabilities (procps) vulnerability
2018-12-19 20:15:02
Security Bulletin: Vulnerabilities in procps-ng affect PowerKVM
2018-07-07 00:00:18
ubuntu
ubuntu
procps-ng vulnerabilities
2018-06-05 00:00:00
procps-ng vulnerabilities
2018-05-23 00:00:00
centos
centos
procps security update
2018-06-01 15:12:08
procps security update
2018-05-29 17:26:08
rosalinux
rosalinux
Advisory ROSA-SA-2021-1956
2021-07-02 18:00:03
gentoo
gentoo
procps: Multiple vulnerabilities
2018-05-30 00:00:00
debian
debian
[SECURITY] [DSA 4208-1] procps security update
2018-05-22 15:45:25
[SECURITY] [DLA 1390-1] procps security update
2018-05-31 20:24:15
[SECURITY] [DSA 4208-1] procps security update
2018-05-22 15:45:25
suse
suse
Security update for procps (important)
2019-10-26 00:00:00
Security update for procps (important)
2019-03-04 00:00:00
Security update for procps (important)
2019-10-26 00:00:00
zdt
zdt
Procps-ng - Multiple Vulnerabilities
2018-05-30 00:00:00
slackware
slackware
[slackware-security] procps-ng
2018-05-23 06:37:37
cloudfoundry
cloudfoundry
USN-3658-1: procps-ng vulnerabilities | Cloud Foundry
2018-06-05 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0085
2018-08-15 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0175
2018-08-15 00:00:00
Critical Photon OS Security Update - PHSA-2018-0175
2018-08-15 00:00:00
packetstorm
packetstorm
Procps-ng Audit Report
2018-05-22 00:00:00
exploitpack
exploitpack
Procps-ng - Multiple Vulnerabilities
2018-05-30 00:00:00
exploitdb
exploitdb
Procps-ng - Multiple Vulnerabilities
2018-05-30 00:00:00

0.0005 Low

EPSS

Percentile

17.1%

JSON
Related for VERACODE:12925
ubuntucve2f52nessus46cve2nvd2redhat7redhatcve2cvelist2prion2debiancve2osv4openvas22oraclelinux2fedora2amazon1ibm7ubuntu2centos2rosalinux1gentoo1debian3suse4zdt1slackware1cloudfoundry1photon4packetstorm1exploitpack1exploitdb1