How severe is CVE-2018-16888?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.4 out of 10.

What type of vulnerability is CVE-2018-16888?

This is classified as CWE-250, which is a common weakness in software security.

CVE-2018-16888 - MEDIUM Severity | CVSS 4.4

Vulnerability Description

It was discovered systemd does not correctly check the content of PIDFile files before using it to kill processes. When a service is run from an unprivileged user (e.g. User field set in the service file), a local attacker who is able to write to the PIDFile of the mentioned service may use this flaw to trick systemd into killing other services and/or privileged processes. Versions before v237 are vulnerable.

Related Vulnerabilities

CVE-2023-27247

MEDIUM

CVSS:4.4(Medium)

Cynet Client Agent v4.6.0.8010 allows attackers with Administrator rights to disable the EDR functions by disabling process privilege tokens.

CWE-2502023

CVE-2024-8266

MEDIUM

CVSS:4.4(Medium)

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.1 prior to 17.6.0, which allows an attacker with maintainer role to trigger a pipeline as project owner under certain ci...

CWE-2502024

CVE-2023-27312

MEDIUM

CVSS:4.3(Medium)

SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are susceptible to a vulnerability which may allow authenticated unprivileged users to modify email and snapshot name settings within the...

CWE-2502023

CVE-2024-11821

MEDIUM

CVSS:4.3(Medium)

A privilege escalation vulnerability exists in langgenius/dify version 0.9.1. This vulnerability allows a normal user to modify Orchestrate instructions for a chatbot created by an admin user. The iss...

CWE-2502024

CVE-2020-27826

MEDIUM

CVSS:4.2(Medium)

A flaw was found in Keycloak before version 12.0.0 where it is possible to update the user's metadata attributes using Account REST API. This flaw allows an attacker to change its own NameID attribute...

CWE-2502020

CVE-2019-10147

MEDIUM

CVSS:4.7(Medium)

rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`. Processes run with `rkt enter` are not limited by cgroups during stage 2 (the actual environment in w...

CWE-2502019