CVE-2017-6188 log
| Source |
|
| Severity | High |
| Remote | Yes |
| Type | Arbitrary file overwrite |
| Description | A vulnerability in munin allows attackers to overwrite any file accessible to the webserver user by setting multiple upper_limit GET parameters when CGI graphs are enabled. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-953 | munin | 2.0.26-5 | 2.0.47-1 | High | Fixed | FS#57537 |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 06 May 2019 | ASA-201905-1 | AVG-953 | munin | High | arbitrary file overwrite |
| References |
|---|
https://www.debian.org/security/2017/dsa-3794 https://github.com/munin-monitoring/munin/pull/797/commits/42ce18f24d3eae8be33526a198bf21e4f2330230 |