V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
CVE-2018-5390
AST
High

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incom…

CVSS
7.5
High
EPSS
0.74
p99
Published
2018-01-01
Updated
2018-01-01
Description

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.

Tags · CWE
Pre-auth
CWE-400
CAPEC-147
CAPEC-227
CAPEC-492
Affected products
KernelKernelKernelKernelKernelKernelKernelKernelKernelKernelKernelKernelKernel-altKernel-rtKernel-rtLinuxLinuxLinuxLinuxLinux
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Timeline
2018-01-01
Published
2018-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: N
None (N)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: N
None (N)
Integrity Impact
I: N
None (N)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.735 · p99
Known exploited (KEV)
No
MITRE ATT&CK
Inferred via CAPEC
└ via CAPEC-227 · CWE-400
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Debian
Debian Linux
Canonical
Ubuntu Linux
Linux
Linux Kernel
Red Hat
KernelEnterprise Linux DesktopEnterprise Linux ServerEnterprise Linux WorkstationKernel-rtEnterprise Linux Server AusEnterprise Linux Server TusEnterprise Linux Server EusRedhat-virtualization-hostKernel-alt+3
Cisco
Telepresence Video Communication ServerDigital Network Architecture CenterExpresswayTelepresence ConductorCollaboration Meeting RoomsMeeting ManagementWebex Video MeshNetwork Assurance EngineExpressway SeriesTelepresence Conductor Firmware+3
Hp
Aruba Clearpass Policy ManagerAruba Airwave Amp
F5
Big-ip Access Policy ManagerBig-ip Application Security ManagerBig-ip Advanced Firewall ManagerBig-ip Local Traffic ManagerBig-ip Policy Enforcement ManagerBig-ip Link ControllerBig-ip Application Acceleration ManagerBig-ip AnalyticsBig-ip Global Traffic ManagerBig-ip Domain Name System+4
A10networks
Advanced Core Operating System
ProductVendorStatus
kernelTracked
kernelTracked
kernelTracked
kernelTracked
kernelTracked
kernelTracked
kernelTracked
kernelTracked
kernelTracked
kernelTracked
kernelTracked
kernelTracked
kernel-altTracked
kernel-rtTracked
kernel-rtTracked
linuxTracked
linuxTracked
linuxTracked
linuxTracked
linuxTracked
Showing first 20 of 106
Source databases
AST
DEB
CVE
RED
UBU
Related vulnerabilities
BDU:2018-00979