Privilege Escalation Vulnerability in Linux Kernel KVM Hypervisor

Privilege Escalation Vulnerability in Linux Kernel KVM Hypervisor

CVE-2018-10853 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process could use this flaw to potentially escalate privileges inside guest.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.