Corosync
CVE-2018-1084
HIGH
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
1DescriptionNVD
corosync before version 2.4.4 is vulnerable to an integer overflow in exec/totemcrypto.c.
AnalysisAI
corosync before version 2.4.4 is vulnerable to an integer overflow in exec/totemcrypto.c. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Technical ContextAI
This vulnerability is classified as Integer Overflow (CWE-190), which allows attackers to cause unexpected behavior through arithmetic overflow. corosync before version 2.4.4 is vulnerable to an integer overflow in exec/totemcrypto.c. Affected products include: Corosync, Debian Debian Linux, Redhat Enterprise Linux Server, Canonical Ubuntu Linux. Version information: version 2.4.4.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Validate arithmetic operations, use safe integer libraries, check bounds before allocation.
Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer ove
The init_nss_hash function in exec/totemcrypto.c in Corosync 2.0 before 2.3 does not properly initialize the HMAC key, w
Same weakness CWE-190 – Integer Overflow or Wraparound
View allSame technique Integer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today