CVE-2018-14634

HIGH KEV

Linux kernel <4.14 - Privilege Escalation

Title source: llm

Description

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.

Exploits (2)

exploitdb WORKING POC
by Qualys Corporation · clocallinux_x86-64
https://www.exploit-db.com/exploits/45516
nomisec WORKING POC 6 stars
by luan0ap · local
https://github.com/luan0ap/cve-2018-14634

References (23)

... and 3 more

Scores

CVSS v3 7.8
EPSS 0.2358
EPSS Percentile 96.0%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2026-01-26
VulnCheck KEV 2026-01-26
ENISA EUVD EUVD-2018-6537
CWE
CWE-190
Status published
Products (39)
canonical/ubuntu_linux 12.04
canonical/ubuntu_linux 14.04
f5/big-ip_access_policy_manager 11.2.1 - 11.6.4
f5/big-ip_advanced_firewall_manager 11.2.1 - 11.6.4
f5/big-ip_analytics 11.2.1 - 11.6.4
f5/big-ip_application_acceleration_manager 11.2.1 - 11.6.4
f5/big-ip_application_security_manager 11.2.1 - 11.6.4
f5/big-ip_domain_name_system 11.2.1 - 11.6.4
f5/big-ip_edge_gateway 11.2.1 - 11.6.4
f5/big-ip_fraud_protection_service 11.2.1 - 11.6.4
... and 29 more
Published Sep 25, 2018
KEV Added Jan 26, 2026
Tracked Since Feb 18, 2026