Multiple vulnerabilities in cflinuxfs3
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 4 |
| CVE-ID | CVE-2017-9525 CVE-2019-9704 CVE-2019-9705 CVE-2019-9706 |
| CWE-ID | CWE-264 CWE-252 CWE-770 CWE-416 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
cflinuxfs3 Other software / Other software solutions |
| Vendor | Cloud Foundry Foundation |
Security Bulletin
This security bulletin contains information about 4 vulnerabilities.
1) Privilege escalation
EUVDB-ID: #VU7010
Risk: Low
CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2017-9525
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to gain elevated privileges on the target system.
The weakness exists in Cron due to a flaw in the postinst maintainer script. A local attacker with crontab group privileges can conduct a symlink attack, bypass crontab privilege separation controls and gain root privileges on the target system.
Successful exploitation of the vulnerability results in privilege escalation.
Install update from vendor's website.
Vulnerable software versionscflinuxfs3: 0.0.0 - 0.294.0
CPE2.3- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.2:*:*:*:*:*:*:*
https://github.com/cloudfoundry/cflinuxfs3/releases/tag/0.295.0
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Unchecked Return Value
EUVDB-ID: #VU63055
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2019-9704
CWE-ID:
CWE-252 - Unchecked Return Value
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to the calloc return value is not checked. A local user can create a large crontab file and crash the daemon.
Install update from vendor's website.
Vulnerable software versionscflinuxfs3: 0.0.0 - 0.294.0
CPE2.3- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.2:*:*:*:*:*:*:*
https://github.com/cloudfoundry/cflinuxfs3/releases/tag/0.295.0
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Allocation of Resources Without Limits or Throttling
EUVDB-ID: #VU63054
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2019-9705
CWE-ID:
CWE-770 - Allocation of Resources Without Limits or Throttling
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to Vixie Cron implementation allows unlimited number of lines to be inserted into the crontab file. A local user can create a very large crontab file and consume all available memory on the system.
Install update from vendor's website.
Vulnerable software versionscflinuxfs3: 0.0.0 - 0.294.0
CPE2.3- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.2:*:*:*:*:*:*:*
https://github.com/cloudfoundry/cflinuxfs3/releases/tag/0.295.0
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Use-after-free
EUVDB-ID: #VU63053
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2019-9706
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a use-after-free error in force_rescan_user() function in Vixie Cron. A local user can write specially crafted data to the crontab file, trigger a use-after-free error and crash the daemon.
Install update from vendor's website.
Vulnerable software versionscflinuxfs3: 0.0.0 - 0.294.0
CPE2.3- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cloud_foundry_foundation:cflinuxfs3:0.0.2:*:*:*:*:*:*:*
https://github.com/cloudfoundry/cflinuxfs3/releases/tag/0.295.0
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
