CVE-2016-10140

2017-01-1309:59:00

Alpine Linux Development Team

security.alpinelinux.org

0.008 Low

EPSS

Percentile

81.7%

JSON

Information disclosure and authentication bypass vulnerability exists in the Apache HTTP Server configuration bundled with ZoneMinder v1.30 and v1.29, which allows a remote unauthenticated attacker to browse all directories in the web root, e.g., a remote unauthenticated attacker can view all CCTV images on the server via the /events URI.

OSVersionArchitecturePackageVersionFilename
Alpineedge-communitynoarchzoneminder< 1.30.2-r0UNKNOWN
Alpine3.10-communitynoarchzoneminder< 1.30.2-r0UNKNOWN
Alpine3.11-communitynoarchzoneminder< 1.30.2-r0UNKNOWN
Alpine3.12-communitynoarchzoneminder< 1.30.2-r0UNKNOWN
Alpine3.13-communitynoarchzoneminder< 1.30.2-r0UNKNOWN
Alpine3.14-communitynoarchzoneminder< 1.30.2-r0UNKNOWN
Alpine3.15-communitynoarchzoneminder< 1.30.2-r0UNKNOWN
Alpine3.16-communitynoarchzoneminder< 1.30.2-r0UNKNOWN
Alpine3.17-communitynoarchzoneminder< 1.30.2-r0UNKNOWN
Alpine3.18-communitynoarchzoneminder< 1.30.2-r0UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Alpine	edge-community	noarch	zoneminder	< 1.30.2-r0	UNKNOWN
Alpine	3.10-community	noarch	zoneminder	< 1.30.2-r0	UNKNOWN
Alpine	3.11-community	noarch	zoneminder	< 1.30.2-r0	UNKNOWN
Alpine	3.12-community	noarch	zoneminder	< 1.30.2-r0	UNKNOWN
Alpine	3.13-community	noarch	zoneminder	< 1.30.2-r0	UNKNOWN
Alpine	3.14-community	noarch	zoneminder	< 1.30.2-r0	UNKNOWN
Alpine	3.15-community	noarch	zoneminder	< 1.30.2-r0	UNKNOWN
Alpine	3.16-community	noarch	zoneminder	< 1.30.2-r0	UNKNOWN
Alpine	3.17-community	noarch	zoneminder	< 1.30.2-r0	UNKNOWN
Alpine	3.18-community	noarch	zoneminder	< 1.30.2-r0	UNKNOWN

Rows per page:

1-10 of 171

0.008 Low

EPSS

Percentile

81.7%

JSON

Related for ALPINE:CVE-2016-10140