What is CVE-2016-9040?

CVE-2016-9040 is a medium-severity vulnerability in Joyent Smartos. CVSS score: 6.2/10. Published 2018-09-07.

How severe is CVE-2016-9040?

Medium severity. CVSS v3 base score is 6.2 out of 10.

Is CVE-2016-9040 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Joyent Smartos

CVE-2016-9040

An exploitable denial of service exists in the the Joyent SmartOS OS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFSADDENTRIES when used with a 32 bit model. An attacke…

EPSS: 0.001 (19.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.2 (Medium). Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Joyent Smartos — versions 20161110T013148Z

Public proof-of-concept exploits

Live-Hack-CVE/CVE-2016-9040

References

www.talosintelligence.com/vulnerability_reports/TALOS-2016-0258 (x_refsource_MISC)

Frequently asked questions

What is CVE-2016-9040?: CVE-2016-9040 is a medium-severity vulnerability in Joyent Smartos. CVSS score: 6.2/10. Published 2018-09-07.
How severe is CVE-2016-9040?: Medium severity. CVSS v3 base score is 6.2 out of 10.
Is CVE-2016-9040 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.