CVE-2017-8809

Опубликовано: 15 нояб. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 7.5

CVSS3: 9.8

Описание

api.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has a Reflected File Download vulnerability.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	1.27.4-1
cosmic	not-affected	1.27.4-1
devel	not-affected	1.27.4-1
disco	not-affected	1.27.4-1
esm-apps/bionic	not-affected	1.27.4-1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needed]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was needed

Показывать по

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2017-8809

CVSS3: 9.8

nvd

около 8 лет назад

api.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has a Reflected File Download vulnerability.

CVE-2017-8809

CVSS3: 9.8

debian

около 8 лет назад

api.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x b ...

GHSA-9jj4-4ghw-p8jj

CVSS3: 9.8

github

больше 3 лет назад

api.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has a Reflected File Download vulnerability.

BDU:2018-00062

CVSS3: 9.8

fstec

около 8 лет назад

Уязвимость сценария api.php программного средства для реализации гипертекстовой среды MediaWiki, позволяющая нарушителю выполнить произвольный код

7.5 High

CVSS2

9.8 Critical

CVSS3