CVE-2018-14650

It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected data in the /var/tmp directory.

Published: Sep 27, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-14650
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5
AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 1.9
AV:L/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-732
CWE-276

Affected Software
References

Software	From	Fixed in
sos-collector_project / sos-collector	1.4	1.4.x
redhat / enterprise_linux_server	7.0	7.0.x
redhat / enterprise_linux_workstation	7.0	7.0.x
redhat / enterprise_linux_desktop	7.0	7.0.x
redhat / enterprise_linux_server_eus	7.6	7.6.x
redhat / enterprise_linux_server_aus	7.6	7.6.x

https://access.redhat.com/errata/RHSA-2018:3663
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14650
https://github.com/sosreport/sos-collector/commit/72058f9253e7ed8c7243e2ff76a16d97b03d65ed

Vulnerability Database

289,599

CVE-2018-14650