CVE-2016-1000104

Опубликовано: 03 дек. 2019

Источник: nvd

CVSS3: 8.8

CVSS2: 6.5

EPSS Низкий

Описание

A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07.

Ссылки

http://lists.opensuse.org/opensuse-updates/2016-08/msg00084.html
Mailing List
Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/07/18/6
http://www.securityfocus.com/bid/91822
https://www.tenable.com/security/tns-2017-04
http://lists.opensuse.org/opensuse-updates/2016-08/msg00084.html
Mailing List
Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/07/18/6
http://www.securityfocus.com/bid/91822
https://www.tenable.com/security/tns-2017-04

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:apache:mod_fcgid:*:*:*:*:*:*:*:*

Версия до 2016-07-07 (включая)

Конфигурация 2

Одно из

cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.00407

Низкий

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2016-1000104

CVSS3: 8.8

ubuntu

около 6 лет назад

A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07.

CVE-2016-1000104

CVSS3: 5

redhat

больше 9 лет назад

A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07.

CVE-2016-1000104

CVSS3: 8.8

msrc

3 месяца назад

A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07.

CVE-2016-1000104

CVSS3: 8.8

debian

около 6 лет назад

A security Bypass vulnerability exists in the FcgidPassHeader Proxy in ...

SUSE-SU-2016:1820-1

suse-cvrf

больше 9 лет назад

Security update for apache2-mod_fcgid

EPSS

Процентиль: 61%

0.00407

Низкий

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-20