vulnerability
Ubuntu: USN-4536-1 (CVE-2019-11071): SPIP vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:P/I:P/A:P) | Apr 10, 2019 | Sep 25, 2020 | Mar 22, 2023 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Published
Apr 10, 2019
Added
Sep 25, 2020
Modified
Mar 22, 2023
Description
SPIP 3.1 before 3.1.10 and 3.2 before 3.2.4 allows authenticated visitors to execute arbitrary code on the host server because var_memotri is mishandled.
Solution
ubuntu-upgrade-spip
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.