9.3
CVE-2012-3513
- EPSS 2.37%
- Veröffentlicht 21.11.2012 23:55:01
- Zuletzt bearbeitet 16.06.2026 23:43:22
- CVE-Watchlists
- Unerledigt
munin-cgi-graph in Munin before 2.0.6, when running as a CGI module under Apache, allows remote attackers to load new configurations and create files in arbitrary directories via the logdir command.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Munin-monitoring ≫ Munin Version <= 2.0.5
Munin-monitoring ≫ Munin Version2.0-beta1
Munin-monitoring ≫ Munin Version2.0-beta2
Munin-monitoring ≫ Munin Version2.0-beta3
Munin-monitoring ≫ Munin Version2.0-beta4
Munin-monitoring ≫ Munin Version2.0-beta5
Munin-monitoring ≫ Munin Version2.0-beta6
Munin-monitoring ≫ Munin Version2.0-beta7
Munin-monitoring ≫ Munin Version2.0-rc1
Munin-monitoring ≫ Munin Version2.0-rc2
Munin-monitoring ≫ Munin Version2.0-rc3
Munin-monitoring ≫ Munin Version2.0-rc4
Munin-monitoring ≫ Munin Version2.0-rc5
Munin-monitoring ≫ Munin Version2.0-rc6
Munin-monitoring ≫ Munin Version2.0-rc7
Munin-monitoring ≫ Munin Version2.0.0
Munin-monitoring ≫ Munin Version2.0.1
Munin-monitoring ≫ Munin Version2.0.2
Munin-monitoring ≫ Munin Version2.0.3
Munin-monitoring ≫ Munin Version2.0.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.37% | 0.816 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://www.ubuntu.com/usn/USN-1622-1
http://www.openwall.com/lists/oss-security/2012/08/21/1
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=684076
http://www.munin-monitoring.org/ticket/1238