cvelistv5 - cve-2018-14650

CVE-2018-14650 (GCVE-0-2018-14650)

Vulnerability from cvelistv5 – Published: 2018-09-27 20:00 – Updated: 2024-08-05 09:38

Summary

It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory.

Severity ?

5.9 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

CWE

CWE-732

Assigner

redhat

References

URL

	Vendor	Product	Version
	[UNKNOWN]	sos-collector	Affected: n/a

FKIE_CVE-2018-14650

Vulnerability from fkie_nvd - Published: 2018-09-27 20:29 - Updated: 2024-11-21 03:49

Severity ?

5.9 (Medium) - CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N
5.0 (Medium) - CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

Summary

References

URL	Tags
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2018:3663	Third Party Advisory
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14650	Issue Tracking, Third Party Advisory
secalert@redhat.com	https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2018:3663	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14650	Issue Tracking, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed	Exploit, Third Party Advisory

Impacted products

Vendor	Product	Version
sos-collector_project	sos-collector	1.4
redhat	enterprise_linux_desktop	7.0
redhat	enterprise_linux_server	7.0
redhat	enterprise_linux_server_aus	7.6
redhat	enterprise_linux_server_eus	7.6
redhat	enterprise_linux_workstation	7.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:sos-collector_project:sos-collector:1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "E32CDC4D-76CB-4000-ADA3-9B0BCD107372",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:x64:*",
              "matchCriteriaId": "AE8DED75-8C97-476F-805B-7A2F17B6BC11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "B353CE99-D57C-465B-AAB0-73EF581127D1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "BF77CDCF-B9C9-427D-B2BF-36650FB2148C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:x64:*",
              "matchCriteriaId": "B061040C-AB62-4ED6-8F4A-A49DA6753C4B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory."
    },
    {
      "lang": "es",
      "value": "Se ha descubierto que sos-collector no establece correctamente los permisos por defecto de los nuevos archivos creados, haciendo que todos los archivos creados por la herramienta puedan ser le\u00eddos por cualquier usuario local. Un atacante local podr\u00eda utilizar este error esperando a que un usuario leg\u00edtimo ejecute sos-collector y robe los datos recopilados en el directorio /var/tmp."
    }
  ],
  "id": "CVE-2018-14650",
  "lastModified": "2024-11-21T03:49:30.533",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 1.9,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 3.4,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 5.9,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 1.5,
        "impactScore": 4.0,
        "source": "secalert@redhat.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 1.3,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-09-27T20:29:00.260",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2018:3663"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14650"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2018:3663"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14650"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-732"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-276"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Secondary"
    }
  ]
}

GSD-2018-14650

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2018-14650

Aliases

CVE-2018-14650

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-14650",
    "description": "It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory.",
    "id": "GSD-2018-14650",
    "references": [
      "https://access.redhat.com/errata/RHSA-2018:3663",
      "https://linux.oracle.com/cve/CVE-2018-14650.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-14650"
      ],
      "details": "It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory.",
      "id": "GSD-2018-14650",
      "modified": "2023-12-13T01:22:38.387446Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2018-14650",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "sos-collector",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "[UNKNOWN]"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory."
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.0"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-732",
                "lang": "eng",
                "value": "CWE-732"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://access.redhat.com/errata/RHSA-2018:3663",
            "refsource": "MISC",
            "url": "https://access.redhat.com/errata/RHSA-2018:3663"
          },
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14650",
            "refsource": "MISC",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14650"
          },
          {
            "name": "https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed",
            "refsource": "MISC",
            "url": "https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:sos-collector_project:sos-collector:1.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:x64:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:x64:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2018-14650"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-732"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed",
              "refsource": "CONFIRM",
              "tags": [
                "Exploit",
                "Third Party Advisory"
              ],
              "url": "https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14650",
              "refsource": "CONFIRM",
              "tags": [
                "Issue Tracking",
                "Third Party Advisory"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14650"
            },
            {
              "name": "RHSA-2018:3663",
              "refsource": "REDHAT",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2018:3663"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 1.9,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 3.4,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 1.3,
          "impactScore": 3.6
        }
      },
      "lastModifiedDate": "2023-02-13T04:51Z",
      "publishedDate": "2018-09-27T20:29Z"
    }
  }
}

RHSA-2018_3663

Vulnerability from csaf_redhat - Published: 2018-11-27 01:39 - Updated: 2024-11-22 12:20

Summary

Red Hat Security Advisory: sos-collector security update

Notes

Topic

An update for sos-collector is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

sos-collector is a utility that gathers sosreports from multi-node environments. sos-collector facilitates data collection for support cases and it can be run from either a node or from an administrator's local workstation that has network access to the environment. The following packages have been upgraded to a later upstream version: sos-collector (1.5). (BZ#1644776) Security Fix(es): * sos-collector: incorrect permissions set on newly created files (CVE-2018-14650) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. This issue was discovered by Riccardo Schirone (Red Hat Product Security).

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for sos-collector is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "sos-collector is a utility that gathers sosreports from multi-node environments. sos-collector facilitates data collection for support cases and it can be run from either a node or from an administrator\u0027s local workstation that has network access to the environment.\n\nThe following packages have been upgraded to a later upstream version: sos-collector (1.5). (BZ#1644776)\n\nSecurity Fix(es):\n\n* sos-collector: incorrect permissions set on newly created files (CVE-2018-14650)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nThis issue was discovered by Riccardo Schirone (Red Hat Product Security).",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2018:3663",
        "url": "https://access.redhat.com/errata/RHSA-2018:3663"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1633243",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1633243"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3663.json"
      }
    ],
    "title": "Red Hat Security Advisory: sos-collector security update",
    "tracking": {
      "current_release_date": "2024-11-22T12:20:56+00:00",
      "generator": {
        "date": "2024-11-22T12:20:56+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2018:3663",
      "initial_release_date": "2018-11-27T01:39:34+00:00",
      "revision_history": [
        {
          "date": "2018-11-27T01:39:34+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2018-11-27T01:39:34+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T12:20:56+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Client (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Client (v. 7)",
                  "product_id": "7Client-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
                  "product_id": "7ComputeNode-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server (v. 7)",
                  "product_id": "7Server-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
                  "product_id": "7Server-Alt-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation (v. 7)",
                  "product_id": "7Workstation-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "sos-collector-0:1.5-3.el7_6.src",
                "product": {
                  "name": "sos-collector-0:1.5-3.el7_6.src",
                  "product_id": "sos-collector-0:1.5-3.el7_6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/sos-collector@1.5-3.el7_6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "sos-collector-0:1.5-3.el7_6.noarch",
                "product": {
                  "name": "sos-collector-0:1.5-3.el7_6.noarch",
                  "product_id": "sos-collector-0:1.5-3.el7_6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/sos-collector@1.5-3.el7_6?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
          "product_id": "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.noarch",
        "relates_to_product_reference": "7Client-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.src as a component of Red Hat Enterprise Linux Client (v. 7)",
          "product_id": "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.src",
        "relates_to_product_reference": "7Client-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
          "product_id": "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.noarch",
        "relates_to_product_reference": "7ComputeNode-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
          "product_id": "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.src",
        "relates_to_product_reference": "7ComputeNode-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.noarch",
        "relates_to_product_reference": "7Server-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.src as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.src",
        "relates_to_product_reference": "7Server-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
          "product_id": "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.noarch",
        "relates_to_product_reference": "7Server-Alt-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
          "product_id": "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.src",
        "relates_to_product_reference": "7Server-Alt-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.noarch",
        "relates_to_product_reference": "7Workstation-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.src",
        "relates_to_product_reference": "7Workstation-7.6.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Riccardo Schirone"
          ],
          "organization": "Red Hat Product Security",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2018-14650",
      "cwe": {
        "id": "CWE-276",
        "name": "Incorrect Default Permissions"
      },
      "discovery_date": "2018-09-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1633243"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "sos-collector: incorrect permissions set on newly created files",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
          "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
          "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
          "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
          "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
          "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
          "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
          "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
          "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
          "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2018-14650"
        },
        {
          "category": "external",
          "summary": "RHBZ#1633243",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1633243"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2018-14650",
          "url": "https://www.cve.org/CVERecord?id=CVE-2018-14650"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-14650",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-14650"
        }
      ],
      "release_date": "2018-09-27T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2018-11-27T01:39:34+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2018:3663"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "sos-collector: incorrect permissions set on newly created files"
    }
  ]
}

RHSA-2018:3663

Vulnerability from csaf_redhat - Published: 2018-11-27 01:39 - Updated: 2025-11-21 18:07

Summary

Red Hat Security Advisory: sos-collector security update

Notes

Topic

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for sos-collector is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "sos-collector is a utility that gathers sosreports from multi-node environments. sos-collector facilitates data collection for support cases and it can be run from either a node or from an administrator\u0027s local workstation that has network access to the environment.\n\nThe following packages have been upgraded to a later upstream version: sos-collector (1.5). (BZ#1644776)\n\nSecurity Fix(es):\n\n* sos-collector: incorrect permissions set on newly created files (CVE-2018-14650)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nThis issue was discovered by Riccardo Schirone (Red Hat Product Security).",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2018:3663",
        "url": "https://access.redhat.com/errata/RHSA-2018:3663"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1633243",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1633243"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3663.json"
      }
    ],
    "title": "Red Hat Security Advisory: sos-collector security update",
    "tracking": {
      "current_release_date": "2025-11-21T18:07:03+00:00",
      "generator": {
        "date": "2025-11-21T18:07:03+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2018:3663",
      "initial_release_date": "2018-11-27T01:39:34+00:00",
      "revision_history": [
        {
          "date": "2018-11-27T01:39:34+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2018-11-27T01:39:34+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T18:07:03+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Client (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Client (v. 7)",
                  "product_id": "7Client-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
                  "product_id": "7ComputeNode-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server (v. 7)",
                  "product_id": "7Server-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
                  "product_id": "7Server-Alt-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation (v. 7)",
                  "product_id": "7Workstation-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "sos-collector-0:1.5-3.el7_6.src",
                "product": {
                  "name": "sos-collector-0:1.5-3.el7_6.src",
                  "product_id": "sos-collector-0:1.5-3.el7_6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/sos-collector@1.5-3.el7_6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "sos-collector-0:1.5-3.el7_6.noarch",
                "product": {
                  "name": "sos-collector-0:1.5-3.el7_6.noarch",
                  "product_id": "sos-collector-0:1.5-3.el7_6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/sos-collector@1.5-3.el7_6?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
          "product_id": "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.noarch",
        "relates_to_product_reference": "7Client-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.src as a component of Red Hat Enterprise Linux Client (v. 7)",
          "product_id": "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.src",
        "relates_to_product_reference": "7Client-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
          "product_id": "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.noarch",
        "relates_to_product_reference": "7ComputeNode-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
          "product_id": "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.src",
        "relates_to_product_reference": "7ComputeNode-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.noarch",
        "relates_to_product_reference": "7Server-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.src as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.src",
        "relates_to_product_reference": "7Server-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
          "product_id": "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.noarch",
        "relates_to_product_reference": "7Server-Alt-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
          "product_id": "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.src",
        "relates_to_product_reference": "7Server-Alt-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.noarch",
        "relates_to_product_reference": "7Workstation-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "sos-collector-0:1.5-3.el7_6.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        },
        "product_reference": "sos-collector-0:1.5-3.el7_6.src",
        "relates_to_product_reference": "7Workstation-7.6.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Riccardo Schirone"
          ],
          "organization": "Red Hat Product Security",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2018-14650",
      "cwe": {
        "id": "CWE-276",
        "name": "Incorrect Default Permissions"
      },
      "discovery_date": "2018-09-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1633243"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "sos-collector: incorrect permissions set on newly created files",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
          "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
          "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
          "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
          "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
          "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
          "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
          "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
          "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
          "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2018-14650"
        },
        {
          "category": "external",
          "summary": "RHBZ#1633243",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1633243"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2018-14650",
          "url": "https://www.cve.org/CVERecord?id=CVE-2018-14650"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-14650",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-14650"
        }
      ],
      "release_date": "2018-09-27T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2018-11-27T01:39:34+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2018:3663"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Client-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7ComputeNode-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Server-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Server-Alt-7.6.Z:sos-collector-0:1.5-3.el7_6.src",
            "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.noarch",
            "7Workstation-7.6.Z:sos-collector-0:1.5-3.el7_6.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "sos-collector: incorrect permissions set on newly created files"
    }
  ]
}

GHSA-4PJF-X44M-95HQ

Vulnerability from github – Published: 2022-05-13 01:34 – Updated: 2022-05-13 01:34

Details

Severity ?

5.0 (Medium)


                  
                    CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-14650"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-276",
      "CWE-732"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2018-09-27T20:29:00Z",
    "severity": "MODERATE"
  },
  "details": "It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory.",
  "id": "GHSA-4pjf-x44m-95hq",
  "modified": "2022-05-13T01:34:30Z",
  "published": "2022-05-13T01:34:30Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-14650"
    },
    {
      "type": "WEB",
      "url": "https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2018:3663"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2018-14650"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1633243"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14650"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

CNVD-2018-20219

Vulnerability from cnvd - Published: 2018-09-30

Title

sos-collector信息泄露漏洞

Description

sos-collector是一款用于从多个节点收集sosreport的实用程序。 sos-collector中存在安全漏洞，该漏洞源于程序未能妥当地设置新建文件的默认权限，导致本地用户可读取该工具创建的所有文件。本地攻击者可通过等待合法用户运行sos-collector利用该漏洞窃取/var/tmp目录中收集的数据。

Severity

中

Patch Name

sos-collector信息泄露漏洞的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed

Reference

https://nvd.nist.gov/vuln/detail/CVE-2018-14650

Impacted products

Name
sos-collector sos-collector

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-14650",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14650"
    }
  },
  "description": "sos-collector\u662f\u4e00\u6b3e\u7528\u4e8e\u4ece\u591a\u4e2a\u8282\u70b9\u6536\u96c6sosreport\u7684\u5b9e\u7528\u7a0b\u5e8f\u3002\r\n\r\nsos-collector\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u59a5\u5f53\u5730\u8bbe\u7f6e\u65b0\u5efa\u6587\u4ef6\u7684\u9ed8\u8ba4\u6743\u9650\uff0c\u5bfc\u81f4\u672c\u5730\u7528\u6237\u53ef\u8bfb\u53d6\u8be5\u5de5\u5177\u521b\u5efa\u7684\u6240\u6709\u6587\u4ef6\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u7b49\u5f85\u5408\u6cd5\u7528\u6237\u8fd0\u884csos-collector\u5229\u7528\u8be5\u6f0f\u6d1e\u7a83\u53d6/var/tmp\u76ee\u5f55\u4e2d\u6536\u96c6\u7684\u6570\u636e\u3002",
  "discovererName": "unKnow",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-20219",
  "openTime": "2018-09-30",
  "patchDescription": "sos-collector\u662f\u4e00\u6b3e\u7528\u4e8e\u4ece\u591a\u4e2a\u8282\u70b9\u6536\u96c6sosreport\u7684\u5b9e\u7528\u7a0b\u5e8f\u3002\r\n\r\nsos-collector\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u59a5\u5f53\u5730\u8bbe\u7f6e\u65b0\u5efa\u6587\u4ef6\u7684\u9ed8\u8ba4\u6743\u9650\uff0c\u5bfc\u81f4\u672c\u5730\u7528\u6237\u53ef\u8bfb\u53d6\u8be5\u5de5\u5177\u521b\u5efa\u7684\u6240\u6709\u6587\u4ef6\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u7b49\u5f85\u5408\u6cd5\u7528\u6237\u8fd0\u884csos-collector\u5229\u7528\u8be5\u6f0f\u6d1e\u7a83\u53d6/var/tmp\u76ee\u5f55\u4e2d\u6536\u96c6\u7684\u6570\u636e\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "sos-collector\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "sos-collector sos-collector"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-14650",
  "serverity": "\u4e2d",
  "submitTime": "2018-09-29",
  "title": "sos-collector\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-14650 (GCVE-0-2018-14650)

FKIE_CVE-2018-14650

GSD-2018-14650

RHSA-2018_3663

RHSA-2018:3663

GHSA-4PJF-X44M-95HQ

CNVD-2018-20219

Tags

Sightings

Nomenclature