Search for vulnerabilities
Vulnerability details: VCID-m2gb-f8u4-aaae
Vulnerability ID VCID-m2gb-f8u4-aaae
Aliases CVE-2018-2637
Summary Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JMX). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded, JRockit accessible data as well as unauthorized access to critical data or complete access to all Java SE, Java SE Embedded, JRockit accessible data. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.0 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-502 Deserialization of Untrusted Data
System Score Found at
generic_textual Medium http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-2637.html
rhas Important https://access.redhat.com/errata/RHSA-2018:0095
ssvc Track https://access.redhat.com/errata/RHSA-2018:0095
rhas Critical https://access.redhat.com/errata/RHSA-2018:0099
ssvc Track https://access.redhat.com/errata/RHSA-2018:0099
rhas Important https://access.redhat.com/errata/RHSA-2018:0100
ssvc Track https://access.redhat.com/errata/RHSA-2018:0100
rhas Important https://access.redhat.com/errata/RHSA-2018:0115
ssvc Track https://access.redhat.com/errata/RHSA-2018:0115
rhas Important https://access.redhat.com/errata/RHSA-2018:0349
ssvc Track https://access.redhat.com/errata/RHSA-2018:0349
rhas Critical https://access.redhat.com/errata/RHSA-2018:0351
ssvc Track https://access.redhat.com/errata/RHSA-2018:0351
rhas Critical https://access.redhat.com/errata/RHSA-2018:0352
ssvc Track https://access.redhat.com/errata/RHSA-2018:0352
rhas Important https://access.redhat.com/errata/RHSA-2018:0458
ssvc Track https://access.redhat.com/errata/RHSA-2018:0458
rhas Important https://access.redhat.com/errata/RHSA-2018:0521
ssvc Track https://access.redhat.com/errata/RHSA-2018:0521
rhas Moderate https://access.redhat.com/errata/RHSA-2018:1463
ssvc Track https://access.redhat.com/errata/RHSA-2018:1463
rhas Important https://access.redhat.com/errata/RHSA-2018:1812
ssvc Track https://access.redhat.com/errata/RHSA-2018:1812
cvssv3 7.4 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-2637.json
epss 0.00136 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00136 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00136 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00136 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00136 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00136 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00136 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00136 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00136 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00136 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00162 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00162 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00165 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00178 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00234 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00278 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00278 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00278 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00278 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00278 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00278 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00278 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00278 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00278 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00278 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00488 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00488 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00488 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00488 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
epss 0.00638 https://api.first.org/data/v1/epss?cve=CVE-2018-2637
rhbs high https://bugzilla.redhat.com/show_bug.cgi?id=1534970
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2579
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2582
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2588
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2599
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2602
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2603
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2618
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2629
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2633
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2634
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2637
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2641
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2663
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2677
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2678
cvssv3 7.4 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1 6.1 https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
generic_textual MODERATE https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
cvssv2 5.8 https://nvd.nist.gov/vuln/detail/CVE-2018-2637
cvssv3 7.4 https://nvd.nist.gov/vuln/detail/CVE-2018-2637
cvssv3 7.4 https://nvd.nist.gov/vuln/detail/CVE-2018-2637
cvssv3.1 7.4 https://nvd.nist.gov/vuln/detail/CVE-2018-2637
generic_textual Medium https://ubuntu.com/security/notices/USN-3613-1
generic_textual Medium https://ubuntu.com/security/notices/USN-3614-1
generic_textual Medium https://usn.ubuntu.com/usn/usn-3613-1
generic_textual Medium https://usn.ubuntu.com/usn/usn-3614-1
cvssv3.1 7.5 http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
generic_textual HIGH http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
Reference id Reference type URL
http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-2637.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-2637.json
https://api.first.org/data/v1/epss?cve=CVE-2018-2637
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2579
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2582
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2588
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2599
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2602
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2603
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2618
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2629
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2633
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2634
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2637
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2641
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2663
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2677
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2678
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
https://lists.debian.org/debian-lts-announce/2018/04/msg00003.html
https://security.netapp.com/advisory/ntap-20180117-0001/
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03911en_us
https://ubuntu.com/security/notices/USN-3613-1
https://ubuntu.com/security/notices/USN-3614-1
https://usn.ubuntu.com/3613-1/
https://usn.ubuntu.com/3614-1/
https://usn.ubuntu.com/usn/usn-3613-1
https://usn.ubuntu.com/usn/usn-3614-1
https://www.debian.org/security/2018/dsa-4144
https://www.debian.org/security/2018/dsa-4166
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
http://www.securityfocus.com/bid/102576
http://www.securitytracker.com/id/1040203
1534970 https://bugzilla.redhat.com/show_bug.cgi?id=1534970
cpe:2.3:a:hp:xp7_command_view:*:*:*:*:advanced:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hp:xp7_command_view:*:*:*:*:advanced:*:*:*
cpe:2.3:a:hp:xp_command_view:*:*:*:*:advanced:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hp:xp_command_view:*:*:*:*:advanced:*:*:*
cpe:2.3:a:hp:xp_p9000_command_view:*:*:*:*:advanced:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hp:xp_p9000_command_view:*:*:*:*:advanced:*:*:*
cpe:2.3:a:oracle:jdk:1.6.0:update171:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.6.0:update171:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update161:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.7.0:update161:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update152:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:update152:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.9.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:9.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.6.0:update171:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.6.0:update171:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.7.0:update161:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.7.0:update161:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.8.0:update152:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:update152:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.9.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:9.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jrockit:r28.3.16:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jrockit:r28.3.16:*:*:*:*:*:*:*
cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:*
cpe:2.3:a:redhat:satellite:5.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:satellite:5.7:*:*:*:*:*:*:*
cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:struxureware_data_center_expert:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:schneider-electric:struxureware_data_center_expert:*:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
CVE-2018-2637 https://nvd.nist.gov/vuln/detail/CVE-2018-2637
GLSA-201803-06 https://security.gentoo.org/glsa/201803-06
RHSA-2018:0095 https://access.redhat.com/errata/RHSA-2018:0095
RHSA-2018:0099 https://access.redhat.com/errata/RHSA-2018:0099
RHSA-2018:0100 https://access.redhat.com/errata/RHSA-2018:0100
RHSA-2018:0115 https://access.redhat.com/errata/RHSA-2018:0115
RHSA-2018:0349 https://access.redhat.com/errata/RHSA-2018:0349
RHSA-2018:0351 https://access.redhat.com/errata/RHSA-2018:0351
RHSA-2018:0352 https://access.redhat.com/errata/RHSA-2018:0352
RHSA-2018:0458 https://access.redhat.com/errata/RHSA-2018:0458
RHSA-2018:0521 https://access.redhat.com/errata/RHSA-2018:0521
RHSA-2018:1463 https://access.redhat.com/errata/RHSA-2018:1463
RHSA-2018:1812 https://access.redhat.com/errata/RHSA-2018:1812
No exploits are available.
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:0095
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:0099
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:0100
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:0115
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:0349
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:0351
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:0352
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:0458
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:0521
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:1463
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:24:12Z/ Found at https://access.redhat.com/errata/RHSA-2018:1812
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-2637.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Found at https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2018-2637
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2018-2637
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2018-2637
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2018-2637
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Found at http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.34812
EPSS Score 0.00136
Published At April 19, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.