CVE-2018-1029

Vulnerability Profile Updated 3 months ago
Download STIX
Preview STIX
CVE-2018-1029 is a vulnerability that affects the Linux kernel's implementation of the KVM virtualization subsystem. The flaw allows an attacker with local access to a guest virtual machine to escalate their privileges on the host system, potentially gaining full control of the system. This vulnerability received a CVSSv3 score of 7.8 out of 10, indicating a high severity. The vulnerability was discovered and reported by researchers at Red Hat in February 2018. The Linux kernel developers released a patch for the vulnerability in April 2018, which was included in subsequent Linux kernel releases. However, systems running older versions of the Linux kernel may still be vulnerable to this attack. Exploitation of CVE-2018-1029 can have serious consequences for affected systems, as it can allow an attacker to gain complete control over the host system. It is recommended that system administrators apply patches for this vulnerability as soon as possible and monitor their systems for any signs of compromise. Additionally, best practices such as minimizing the attack surface of virtual machines and restricting access to sensitive resources can help mitigate the risk of attacks exploiting this vulnerability.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2018-1029 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Close Quarters Encounters with Third Generation Malware Compels UK and Danish Municipalities to Remodel Vulnerability Management Safeguards