CVE-2018-1218
Last modified
CVE-2018-1218 is a vulnerability of currently unknown severity. In Dell EMC NetWorker versions prior to 9.2.1.1, versions prior to 9.1.1.6, 9.0.x, and versions prior to 8.2.4.11, the 'nsrd' daemon causes a buffer overflow condition when handling certain messages. A remote unauthenticated attacker could potentially exploit this vulnerability to cause a denial of service to the users of NetWorker systems.. EPSS estimates a 13.95% chance of exploitation in the next 30 days.
Description
In Dell EMC NetWorker versions prior to 9.2.1.1, versions prior to 9.1.1.6, 9.0.x, and versions prior to 8.2.4.11, the 'nsrd' daemon causes a buffer overflow condition when handling certain messages. A remote unauthenticated attacker could potentially exploit this vulnerability to cause a denial of service to the users of NetWorker systems.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Dell | Emc Networker | < 9.1.1.6 |
| Dell | Emc Networker | < 9.2.1.1 |
| Dell | Emc Networker | < 8.2.4.11 |
| Dell | Emc Networker | <= 9.0.1 |
References
- http://seclists.org/fulldisclosure/2018/Mar/43Mailing List, Third Party Advisory
- http://www.securitytracker.com/id/1040546Third Party Advisory, VDB Entry
- https://www.exploit-db.com/exploits/44332/Exploit, Third Party Advisory, VDB Entry
- http://seclists.org/fulldisclosure/2018/Mar/43Mailing List, Third Party Advisory
- http://www.securitytracker.com/id/1040546Third Party Advisory, VDB Entry
- https://www.exploit-db.com/exploits/44332/Exploit, Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-1218?
How severe is CVE-2018-1218?
How do I fix CVE-2018-1218?
Are you affected by CVE-2018-1218?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST