CVE-2018-15688

Advisory lineage Upstream: 0 Downstream: 12

Downstream

DEBIAN-CVE-2018-15688 DLA-1580-1 OPENSUSE-SU-2024:10602-1 OPENSUSE-SU-2024:11420-1 RHSA-2018:3665 RHSA-2019:0049

Modified

Published: 26 Oct 2018, 14:00

Last modified:09 Jun 2025, 15:55

Vulnerability Summary

Overall Risk (default)

medium

35/100

CVSS Score

8.8 HIGH

v3.0 (cve.org)

EPSS Score

0.69% LOW

1% probability -0.04%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

26 Oct 2018, 14:00

Published

Vulnerability first disclosed

09 Jun 2025, 15:55

Last Modified

Vulnerability information updated

Description

A buffer overflow vulnerability in the dhcp6 client of systemd allows a malicious dhcp6 server to overwrite heap memory in systemd-networkd. Affected releases are systemd: versions up to and including 239.

CVSS Metrics

v3.1•HIGH•Score: 8.8CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
v3.0•HIGH•Score: 8.8CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
v2.0•MEDIUM•Score: 5.8AV:A/AC:L/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 0.69%• Percentile: 72%

Techniques & Countermeasures

CWE-120•Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

Affected Systems

canonical•ubuntu_linux
16.04 | 18.04 | 18.10
debian•debian_linux
8.0
redhat•enterprise_linux_desktop
7.0
redhat•enterprise_linux_server
7.0
redhat•enterprise_linux_server_aus
7.6
redhat•enterprise_linux_server_eus
7.6
redhat•enterprise_linux_server_tus
7.6
redhat•enterprise_linux_workstation
7.0
systemd_project•systemd
≤ 239
systemd•systemd
≥ unspecified, ≤ 239