CVE-2018-10361
First published: Wed Apr 25 2018(Updated: )
An issue was discovered in KTextEditor 5.34.0 through 5.45.0. Insecure handling of temporary files in the KTextEditor's kauth_ktexteditor_helper service (as utilized in the Kate text editor) can allow other unprivileged users on the local system to gain root privileges. The attack occurs when one user (who has an unprivileged account but is also able to authenticate as root) writes a text file using Kate into a directory owned by a another unprivileged user. The latter unprivileged user conducts a symlink attack to achieve privilege escalation.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Kde Ktexteditor | >=5.34.0<=5.45.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2018-10361.
What is the severity of CVE-2018-10361?
The severity of CVE-2018-10361 is high with a CVSS score of 7.8.
What software is affected by CVE-2018-10361?
KTextEditor versions 5.34.0 through 5.45.0 are affected by CVE-2018-10361.
How can an attacker exploit CVE-2018-10361?
By leveraging insecure handling of temporary files in the KTextEditor's kauth_ktexteditor_helper service, an attacker can gain root privileges on the local system.
Are there any references for CVE-2018-10361?
Yes, you can find references for CVE-2018-10361 at the following URLs: [1] [2] [3].
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/event
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/kde
- canonical/kde ktexteditor
- version/kde ktexteditor/5.34.0
- version/kde ktexteditor/5.45.0