CVE-2018-3841
Last modified
CVE-2018-3841 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. A denial-of-service vulnerability exists in the Pixar Renderman IT Display Service 21.6 (0x69). The vulnerability is present in the parsing of a network packet without proper validation of the packet. EPSS estimates a 1.63% chance of exploitation in the next 30 days.
Description
A denial-of-service vulnerability exists in the Pixar Renderman IT Display Service 21.6 (0x69). The vulnerability is present in the parsing of a network packet without proper validation of the packet. The data read-in is not validated, and its use can lead to a null pointer dereference. The IT application is opened by a user and then listens for a connection on port 4001. An attacker can deliver an attack once the application has been opened.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Pixar | Renderman | 21.6 |
References
- https://talosintelligence.com/vulnerability_reports/TALOS-2018-0524Exploit, Third Party Advisory
- https://talosintelligence.com/vulnerability_reports/TALOS-2018-0524Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-3841?
How severe is CVE-2018-3841?
How do I fix CVE-2018-3841?
Are you affected by CVE-2018-3841?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST