CVE-2016-9848

2016-12-1102:59:45

Alpine Linux Development Team

security.alpinelinux.org

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

7.2

Confidence

Low

EPSS

0.001

Percentile

50.1%

JSON

An issue was discovered in phpMyAdmin. phpinfo (phpinfo.php) shows PHP information including values of HttpOnly cookies. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected.

OSVersionArchitecturePackageVersionFilename
Alpineedge-communitynoarchphpmyadmin< 4.6.5.2-r0UNKNOWN
Alpine3.10-communitynoarchphpmyadmin< 4.6.5.2-r0UNKNOWN
Alpine3.11-communitynoarchphpmyadmin< 4.6.5.2-r0UNKNOWN
Alpine3.12-communitynoarchphpmyadmin< 4.6.5.2-r0UNKNOWN
Alpine3.13-communitynoarchphpmyadmin< 4.6.5.2-r0UNKNOWN
Alpine3.14-communitynoarchphpmyadmin< 4.6.5.2-r0UNKNOWN
Alpine3.15-communitynoarchphpmyadmin< 4.6.5.2-r0UNKNOWN
Alpine3.16-communitynoarchphpmyadmin< 4.6.5.2-r0UNKNOWN
Alpine3.17-communitynoarchphpmyadmin< 4.6.5.2-r0UNKNOWN
Alpine3.18-communitynoarchphpmyadmin< 4.6.5.2-r0UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Alpine	edge-community	noarch	phpmyadmin	< 4.6.5.2-r0	UNKNOWN
Alpine	3.10-community	noarch	phpmyadmin	< 4.6.5.2-r0	UNKNOWN
Alpine	3.11-community	noarch	phpmyadmin	< 4.6.5.2-r0	UNKNOWN
Alpine	3.12-community	noarch	phpmyadmin	< 4.6.5.2-r0	UNKNOWN
Alpine	3.13-community	noarch	phpmyadmin	< 4.6.5.2-r0	UNKNOWN
Alpine	3.14-community	noarch	phpmyadmin	< 4.6.5.2-r0	UNKNOWN
Alpine	3.15-community	noarch	phpmyadmin	< 4.6.5.2-r0	UNKNOWN
Alpine	3.16-community	noarch	phpmyadmin	< 4.6.5.2-r0	UNKNOWN
Alpine	3.17-community	noarch	phpmyadmin	< 4.6.5.2-r0	UNKNOWN
Alpine	3.18-community	noarch	phpmyadmin	< 4.6.5.2-r0	UNKNOWN