CVE-2017-6188 log

Source
Severity High
Remote Yes
Type Arbitrary file overwrite
Description
A vulnerability in munin allows attackers to overwrite any file accessible to the webserver user by setting multiple upper_limit GET parameters when CGI graphs are enabled.
Group Package Affected Fixed Severity Status Ticket
AVG-953 munin 2.0.26-5 2.0.47-1 High Fixed FS#57537
Date Advisory Group Package Severity Description
06 May 2019 ASA-201905-1 AVG-953 munin High arbitrary file overwrite
References
https://www.debian.org/security/2017/dsa-3794
https://github.com/munin-monitoring/munin/pull/797/commits/42ce18f24d3eae8be33526a198bf21e4f2330230