Medium severity5.5NVD Advisory· Published May 21, 2018· Updated Jun 17, 2026
CVE-2018-7268
CVE-2018-7268
Description
MagniComp SysInfo before 10-H81, as shipped with BMC BladeLogic Automation and other products, contains an information exposure vulnerability in which a local unprivileged user is able to read any root (uid 0) owned file on the system, regardless of the file permissions. Confidential information such as password hashes (/etc/shadow) or other secrets (such as log files or private keys) can be leaked to the attacker. The vulnerability has a confidentiality impact, but has no direct impact on system integrity or availability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
3- packetstormsecurity.com/files/147687/MagniComp-SysInfo-Information-Exposure.htmlnvdThird Party AdvisoryVDB Entry
- sintonen.fi/advisories/magnicomp-sysinfo-information-exposure.txtnvdThird Party Advisory
- www.securityfocus.com/archive/1/542024/100/0/threadednvd
News mentions
0No linked articles in our index yet.