vulnerability

FreeBSD: VID-5ED094A0-0150-11E7-AE1B-002590263BF5 (CVE-2016-10026): ikiwiki -- multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:P/A:N)	Dec 19, 2016	Mar 5, 2017	May 7, 2019

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:P/A:N)

Published

Dec 19, 2016

Added

Mar 5, 2017

Modified

May 7, 2019

Description

ikiwiki 3.20161219 does not properly check if a revision changes the access permissions for a page on sites with the git and recentchanges plugins and the CGI interface enabled, which allows remote attackers to revert certain changes by leveraging permissions to change the page before the revision was made.

Solution

freebsd-upgrade-package-ikiwiki

References

DEBIAN-DLA-812-1
DEBIAN-DSA-3760
NVD-CVE-2016-10026

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today