exploitDog

CVE-2018-7490

Опубликовано: 26 фев. 2018

Источник: ubuntu

Приоритет: medium

CVSS2: 5

CVSS3: 7.5

Описание

uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	released	2.0.15-10.2ubuntu2.1
devel	not-affected	2.0.15-10.4
esm-apps/bionic	released	2.0.15-10.2ubuntu2.1
esm-apps/xenial	released	2.0.12-5ubuntu3.2
esm-infra-legacy/trusty	released	1.9.17.1-5ubuntu0.1
precise/esm	DNE
trusty	released	1.9.17.1-5ubuntu0.1
trusty/esm	released	1.9.17.1-5ubuntu0.1
upstream	released	2.0.15-10.4, 2.0.7-1+deb8u2

Показывать по

Ссылки на источники

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2018-7490

CVSS3: 7.5

nvd

почти 8 лет назад

uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal.

CVE-2018-7490

CVSS3: 7.5

debian

почти 8 лет назад

uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the ...

GHSA-h2vm-c85r-5vh5

CVSS3: 7.5

github

больше 3 лет назад

uWSGI Directory Traversal vulnerability

5 Medium

CVSS2

7.5 High

CVSS3