Search for vulnerabilities
Vulnerability details: VCID-fk5w-7q4j-aaam
Vulnerability ID VCID-fk5w-7q4j-aaam
Aliases CVE-2018-3180
Summary Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSL/TLS to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded, JRockit accessible data as well as unauthorized read access to a subset of Java SE, Java SE Embedded, JRockit accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g. code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g. through a web service which supplies data to the APIs. CVSS 3.0 Base Score 5.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L).
Status Published
Exploitability 0.5
Weighted Severity 8.0
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-295 Improper Certificate Validation
System Score Found at
generic_textual Medium http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-3180.html
rhas Important https://access.redhat.com/errata/RHSA-2018:3007
ssvc Track https://access.redhat.com/errata/RHSA-2018:3007
rhas Important https://access.redhat.com/errata/RHSA-2018:3008
ssvc Track https://access.redhat.com/errata/RHSA-2018:3008
cvssv3 4.8 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3180.json
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00063 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00087 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00087 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00103 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00297 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00297 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00297 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00297 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00297 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00297 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00297 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00297 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00297 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00297 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00335 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00335 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00553 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00935 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00935 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00935 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
epss 0.00935 https://api.first.org/data/v1/epss?cve=CVE-2018-3180
rhbs medium https://bugzilla.redhat.com/show_bug.cgi?id=1639484
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3136
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3139
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3149
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3169
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3180
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3183
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3214
cvssv3 5.6 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2 6.8 https://nvd.nist.gov/vuln/detail/CVE-2018-3180
cvssv3 5.6 https://nvd.nist.gov/vuln/detail/CVE-2018-3180
cvssv3.1 5.6 https://nvd.nist.gov/vuln/detail/CVE-2018-3180
generic_textual Low https://ubuntu.com/security/notices/USN-3804-1
generic_textual Medium https://ubuntu.com/security/notices/USN-3824-1
cvssv3.1 5.9 http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
generic_textual MODERATE http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
Reference id Reference type URL
http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-3180.html
https://access.redhat.com/errata/RHSA-2018:2942
https://access.redhat.com/errata/RHSA-2018:2943
https://access.redhat.com/errata/RHSA-2018:3000
https://access.redhat.com/errata/RHSA-2018:3001
https://access.redhat.com/errata/RHSA-2018:3002
https://access.redhat.com/errata/RHSA-2018:3003
https://access.redhat.com/errata/RHSA-2018:3350
https://access.redhat.com/errata/RHSA-2018:3409
https://access.redhat.com/errata/RHSA-2018:3521
https://access.redhat.com/errata/RHSA-2018:3533
https://access.redhat.com/errata/RHSA-2018:3534
https://access.redhat.com/errata/RHSA-2018:3671
https://access.redhat.com/errata/RHSA-2018:3672
https://access.redhat.com/errata/RHSA-2018:3779
https://access.redhat.com/errata/RHSA-2018:3852
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3180.json
https://api.first.org/data/v1/epss?cve=CVE-2018-3180
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3136
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3139
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3149
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3169
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3180
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3183
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3214
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://lists.debian.org/debian-lts-announce/2018/11/msg00026.html
https://security.gentoo.org/glsa/201908-10
https://security.netapp.com/advisory/ntap-20181018-0001/
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03952en_us
https://ubuntu.com/security/notices/USN-3804-1
https://ubuntu.com/security/notices/USN-3824-1
https://usn.ubuntu.com/3804-1/
https://usn.ubuntu.com/3824-1/
https://www.debian.org/security/2018/dsa-4326
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
http://www.securityfocus.com/bid/105617
http://www.securitytracker.com/id/1041889
1639484 https://bugzilla.redhat.com/show_bug.cgi?id=1639484
cpe:2.3:a:hp:xp7_command_view:*:*:*:*:advanced:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hp:xp7_command_view:*:*:*:*:advanced:*:*:*
cpe:2.3:a:oracle:jdk:11.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:11.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.6.0:update201:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.6.0:update201:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update191:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.7.0:update191:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update182:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:update182:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:11.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:11.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.6.0:update201:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.6.0:update201:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.7.0:update191:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.7.0:update191:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.8.0:update182:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:update182:*:*:*:*:*:*
cpe:2.3:a:oracle:jrockit:r28.3.19:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jrockit:r28.3.19:*:*:*:*:*:*:*
cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:*
cpe:2.3:a:redhat:satellite:5.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:satellite:5.7:*:*:*:*:*:*:*
cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
CVE-2018-3180 https://nvd.nist.gov/vuln/detail/CVE-2018-3180
RHSA-2018:3007 https://access.redhat.com/errata/RHSA-2018:3007
RHSA-2018:3008 https://access.redhat.com/errata/RHSA-2018:3008
No exploits are available.
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T18:10:52Z/ Found at https://access.redhat.com/errata/RHSA-2018:3007
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T18:10:52Z/ Found at https://access.redhat.com/errata/RHSA-2018:3008
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3180.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2018-3180
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://nvd.nist.gov/vuln/detail/CVE-2018-3180
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://nvd.nist.gov/vuln/detail/CVE-2018-3180
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Found at http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.20181
EPSS Score 0.00063
Published At April 30, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.