CVE-2018-10361
Last modified
CVE-2018-10361 is a vulnerability of currently unknown severity. An issue was discovered in KTextEditor 5.34.0 through 5.45.0. Insecure handling of temporary files in the KTextEditor's kauth_ktexteditor_helper service (as utilized in the Kate text editor) can allow other unprivileged users on the local system to gain root privileges. EPSS estimates a 0.39% chance of exploitation in the next 30 days.
Description
An issue was discovered in KTextEditor 5.34.0 through 5.45.0. Insecure handling of temporary files in the KTextEditor's kauth_ktexteditor_helper service (as utilized in the Kate text editor) can allow other unprivileged users on the local system to gain root privileges. The attack occurs when one user (who has an unprivileged account but is also able to authenticate as root) writes a text file using Kate into a directory owned by a another unprivileged user. The latter unprivileged user conducts a symlink attack to achieve privilege escalation.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Kde | Ktexteditor | >= 5.34.0, <= 5.45.0 |
References
- http://www.openwall.com/lists/oss-security/2018/04/24/1Mailing List, Third Party Advisory
- https://bugzilla.suse.com/show_bug.cgi?id=1033055Issue Tracking, Third Party Advisory
- http://www.openwall.com/lists/oss-security/2018/04/24/1Mailing List, Third Party Advisory
- https://bugzilla.suse.com/show_bug.cgi?id=1033055Issue Tracking, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-10361?
How severe is CVE-2018-10361?
How do I fix CVE-2018-10361?
Are you affected by CVE-2018-10361?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST