Privilege Escalation Vulnerability in Linux Kernel KVM Hypervisor
CVE-2018-10853 · MEDIUM Severity
AV:L/AC:L/AU:N/C:P/I:P/A:P
A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process could use this flaw to potentially escalate privileges inside guest.
Learn more about our Cis Benchmark Audit For Distribution Independent Linux.