Описание
In MediaWiki through 1.37, blocked IP addresses are allowed to edit EntitySchema items.
A flaw was found in mediawiki in versions through 1.37. Blocked IP addresses are allowed to edit EntitySchema items.
Отчет
The mediawiki package was removed from OpenShift Container Platform (OCP) in version 4.3, therefore for OCP 4 has been marked as out of support scope.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenShift Container Platform 4 | mediawiki | Out of support scope |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-863
https://bugzilla.redhat.com/show_bug.cgi?id=2036079mediawiki: blocked IP addresses are allowed to edit EntitySchema items
EPSS
Процентиль: 54%
0.00311
Низкий
5.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.3
ubuntu
около 4 лет назад
In MediaWiki through 1.37, blocked IP addresses are allowed to edit EntitySchema items.
CVSS3: 5.3
nvd
около 4 лет назад
In MediaWiki through 1.37, blocked IP addresses are allowed to edit EntitySchema items.
github
около 4 лет назад
In MediaWiki through 1.37, blocked IP addresses are allowed to edit EntitySchema items.
EPSS
Процентиль: 54%
0.00311
Низкий
5.3 Medium
CVSS3