High severity7.0NVD Advisory· Published Oct 26, 2018· Updated Jun 17, 2026
CVE-2018-15687
CVE-2018-15687
Description
A race condition in chown_one() of systemd allows an attacker to cause systemd to set arbitrary permissions on arbitrary files. Affected releases are systemd versions up to and including 239.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9<=239+ 1 more
- (no CPE)range: <=239
- (no CPE)range: unspecified
- osv-coords7 versionspkg:apk/chainguard/py3.10-systemdpkg:apk/chainguard/py3.11-systemdpkg:apk/chainguard/py3.12-systemdpkg:apk/chainguard/py3.13-systemdpkg:apk/chainguard/py3-supported-systemdpkg:apk/chainguard/py3-systemdpkg:rpm/opensuse/systemd&distro=openSUSE%20Tumbleweed
< 0+ 6 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 249.4-2.2
Patches
Vulnerability mechanics
References
5- github.com/systemd/systemd/pull/10517/commitsnvdPatchThird Party Advisory
- www.exploit-db.com/exploits/45715/nvdExploitThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/105748nvdBroken LinkThird Party AdvisoryVDB Entry
- security.gentoo.org/glsa/201810-10nvdThird Party Advisory
- usn.ubuntu.com/3816-1/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.