VDB

GCVE-110-MAGEIA-2017-101

GCVE-110-MAGEIA-2017-101
Advisory Published
Vulnetix · Advisory published April 4, 2017
Stevie Trujillo discovered a local file write vulnerability in munin, a network-wide graphing framework, when CGI graphs are enabled. GET parameters are not properly handled, allowing to inject options into munin-cgi-graph and overwriting any file accessible by the user running the cgi-process (CVE-2017-6188).

Affected Products

VendorProductVersionsPlatforms
Mageiaapache-mod_perl0 (affected), 2.0.10-1.mga6 (unaffected)
Mageiamunin2.0.25-1.1.mga5 (unaffected), 0 (affected), 0 (affected), 2.0.25-1.1.mga5 (unaffected)

Browse GCVE Records

72,337 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›