NVD Vulnerability Detail

CVE-2018-14665

Summary	A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.
Publication Date	Oct. 26, 2018, 5:29 a.m.
Registration Date	March 1, 2021, 6:57 p.m.
Last Update	Nov. 21, 2024, 12:49 p.m.

CVSS3.0 : MEDIUM
スコア	6.6
Vector	CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
攻撃元区分(AV)	物理
攻撃条件の複雑さ(AC)	低
攻撃に必要な特権レベル(PR)	低
利用者の関与(UI)	不要
影響の想定範囲(S)	変更なし
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高

CVSS2.0 : HIGH
Score	7.2
Vector	AV:L/AC:L/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ローカル
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:x.org:xorg-server::::::::					1.20.3

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:::::::*

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*

Configuration4		or higher	or less	more than	less than
cpe:2.3:o:debian:debian_linux:9.0:::::::*

Related information, measures and tools

No	URL	タグ
1	http://packetstormsecurity.com/files/154942/Xorg-X11-Server-SUID-modulepath-Privilege-Escalation.html
2	http://packetstormsecurity.com/files/155276/Xorg-X11-Server-Local-Privilege-Escalation.html
3	http://www.securityfocus.com/bid/105741	Third Party Advisory VDB Entry
4	http://www.securitytracker.com/id/1041948	Third Party Advisory VDB Entry
5	https://access.redhat.com/errata/RHSA-2018:3410	Third Party Advisory
6	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14665	Issue Tracking Patch Third Party Advisory
7	https://gitlab.freedesktop.org/xorg/xserver/commit/50c0cf885a6e91c0ea71fb49fa8f1b7c86fe330e	Patch Third Party Advisory
8	https://gitlab.freedesktop.org/xorg/xserver/commit/8a59e3b7dbb30532a7c3769c555e00d7c4301170	Patch Third Party Advisory
9	https://lists.x.org/archives/xorg-announce/2018-October/002927.html	Mitigation Patch Vendor Advisory
10	https://security.gentoo.org/glsa/201810-09	Third Party Advisory
11	https://usn.ubuntu.com/3802-1/	Third Party Advisory
12	https://www.debian.org/security/2018/dsa-4328	Third Party Advisory
13	https://www.exploit-db.com/exploits/45697/	Exploit Third Party Advisory VDB Entry
14	https://www.exploit-db.com/exploits/45742/	Exploit Third Party Advisory VDB Entry
15	https://www.exploit-db.com/exploits/45832/	Exploit Third Party Advisory VDB Entry
16	https://www.exploit-db.com/exploits/45908/	Exploit Third Party Advisory VDB Entry
17	https://www.exploit-db.com/exploits/45922/	Exploit Third Party Advisory VDB Entry
18	https://www.exploit-db.com/exploits/45938/	Exploit Third Party Advisory VDB Entry
19	https://www.exploit-db.com/exploits/46142/	Exploit Third Party Advisory VDB Entry
20	https://www.securepatterns.com/2018/10/cve-2018-14665-xorg-x-server.html	Exploit Third Party Advisory
21	http://packetstormsecurity.com/files/154942/Xorg-X11-Server-SUID-modulepath-Privilege-Escalation.html
22	https://www.securepatterns.com/2018/10/cve-2018-14665-xorg-x-server.html	Exploit Third Party Advisory
23	https://www.exploit-db.com/exploits/46142/	Exploit Third Party Advisory VDB Entry
24	https://www.exploit-db.com/exploits/45938/	Exploit Third Party Advisory VDB Entry
25	https://www.exploit-db.com/exploits/45922/	Exploit Third Party Advisory VDB Entry
26	https://www.exploit-db.com/exploits/45908/	Exploit Third Party Advisory VDB Entry
27	https://www.exploit-db.com/exploits/45832/	Exploit Third Party Advisory VDB Entry
28	https://www.exploit-db.com/exploits/45742/	Exploit Third Party Advisory VDB Entry
29	https://www.exploit-db.com/exploits/45697/	Exploit Third Party Advisory VDB Entry
30	https://www.debian.org/security/2018/dsa-4328	Third Party Advisory
31	https://usn.ubuntu.com/3802-1/	Third Party Advisory
32	https://security.gentoo.org/glsa/201810-09	Third Party Advisory
33	https://lists.x.org/archives/xorg-announce/2018-October/002927.html	Mitigation Patch Vendor Advisory
34	https://gitlab.freedesktop.org/xorg/xserver/commit/8a59e3b7dbb30532a7c3769c555e00d7c4301170	Patch Third Party Advisory
35	https://gitlab.freedesktop.org/xorg/xserver/commit/50c0cf885a6e91c0ea71fb49fa8f1b7c86fe330e	Patch Third Party Advisory
36	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14665	Issue Tracking Patch Third Party Advisory
37	https://access.redhat.com/errata/RHSA-2018:3410	Third Party Advisory
38	http://www.securitytracker.com/id/1041948	Third Party Advisory VDB Entry
39	http://www.securityfocus.com/bid/105741	Third Party Advisory VDB Entry
40	http://packetstormsecurity.com/files/155276/Xorg-X11-Server-Local-Privilege-Escalation.html

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-863	不正な認証	https://cwe.mitre.org/data/definitions/863.html

JVN Vulnerability Information

xorg-x11-server における認可・権限・アクセス制御に関する脆弱性

Title	xorg-x11-server における認可・権限・アクセス制御に関する脆弱性
Summary	xorg-x11-server には、認可・権限・アクセス制御に関する脆弱性が存在します。
Possible impacts	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Oct. 25, 2018, midnight
Registration Date	March 4, 2019, 4:13 p.m.
Last Update	March 4, 2019, 4:13 p.m.

Affected System

レッドハット

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Server AUS

Red Hat Enterprise Linux Server EUS

Red Hat Enterprise Linux Server TUS

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Server AUS

Red Hat Enterprise Linux Server EUS

Red Hat Enterprise Linux Server TUS

Red Hat Enterprise Linux Workstation

X.Org Foundation

X.Org Server 1.20.3 未満

Debian

Debian GNU/Linux

Canonical

Ubuntu

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2018-14665	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665
2	CVE-2018-14665	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665
National Vulnerability Database (NVD)
3	CVE-2018-14665	https://nvd.nist.gov/vuln/detail/CVE-2018-14665
4	CVE-2018-14665	https://nvd.nist.gov/vuln/detail/CVE-2018-14665

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-264	https://jvndb.jvn.jp/ja/cwe/CWE-264.html
2	CWE-264	https://jvndb.jvn.jp/ja/cwe/CWE-264.html

ベンダー情報

No	Name	URL
Debian Security Advisory
1	DSA-4328	https://www.debian.org/security/2018/dsa-4328
2	DSA-4328	https://www.debian.org/security/2018/dsa-4328
freedesktop.org
3	Commit 50c0cf88	https://gitlab.freedesktop.org/xorg/xserver/commit/50c0cf885a6e91c0ea71fb49fa8f1b7c86fe330e
4	Commit 50c0cf88	https://gitlab.freedesktop.org/xorg/xserver/commit/50c0cf885a6e91c0ea71fb49fa8f1b7c86fe330e
5	Commit 8a59e3b7	https://gitlab.freedesktop.org/xorg/xserver/commit/8a59e3b7dbb30532a7c3769c555e00d7c4301170
6	Commit 8a59e3b7	https://gitlab.freedesktop.org/xorg/xserver/commit/8a59e3b7dbb30532a7c3769c555e00d7c4301170
Red Hat Bugzilla
7	Bug 1637761	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14665
8	Bug 1637761	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14665
Red Hat Security Advisory
9	RHSA-2018:3410	https://access.redhat.com/errata/RHSA-2018:3410
10	RHSA-2018:3410	https://access.redhat.com/errata/RHSA-2018:3410
Ubuntu Security Notice
11	USN-3802-1	https://usn.ubuntu.com/3802-1/
12	USN-3802-1	https://usn.ubuntu.com/3802-1/
x.org
13	X.Org security advisory: October 25, 2018	https://lists.x.org/archives/xorg-announce/2018-October/002927.html
14	X.Org security advisory: October 25, 2018	https://lists.x.org/archives/xorg-announce/2018-October/002927.html

Change Log

No	Changed Details	Date of change
1	[2019年03月04日] 掲載	March 4, 2019, 4:13 p.m.
1	[2019年03月04日] 掲載	March 4, 2019, 4:13 p.m.

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:::::::*