CVE-2018-5873

HIGH

Linux kernel <4.11 - Use After Free

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-5873. PoCs published by Trinadh465.

AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2018-5873, targeting a vulnerability in the Linux kernel. The exploit code includes utilities and documentation related to the vulnerability, with a focus on demonstrating the flaw in a Linux 4.1.15 environment.

Description

An issue was discovered in the __ns_get_path function in fs/nsfs.c in the Linux kernel before 4.11. Due to a race condition when accessing files, a Use After Free condition can occur. This also affects all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05.

Exploits (1)

nomisec WORKING POC
by Trinadh465 · poc
https://github.com/Trinadh465/linux-4.1.15_CVE-2018-5873

This repository contains a proof-of-concept exploit for CVE-2018-5873, targeting a vulnerability in the Linux kernel. The exploit code includes utilities and documentation related to the vulnerability, with a focus on demonstrating the flaw in a Linux 4.1.15 environment.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Linux kernel 4.1.15
No auth needed
Prerequisites: Access to a vulnerable Linux kernel version · Ability to compile and execute the exploit code
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Scores

CVSS v3 7.0
EPSS 0.0053
EPSS Percentile 40.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-362 CWE-416
Status published
Products (2)
google/android
linux/linux_kernel 3.19 - 4.1.50
Published Jul 06, 2018
Tracked Since Feb 18, 2026