Lucene search
MitreCVELIST:CVE-2018-12564HistoryJun 19, 2018 - 5:00 a.m.
CVE-2018-12564
2018-06-1905:00:00
mitre
www.cve.org
1
An issue was discovered in Linaro LAVA before 2018.5.post1. Because of support for URLs in the submit page, a user can forge an HTTP request that will force lava-server-gunicorn to return any file on the server that is readable by lavaserver and valid yaml.
Related
openvas
openvas
Debian: Security Advisory (DLA-1404-1)
2018-07-09 00:00:00
Debian: Security Advisory (DSA-4234-1)
2018-06-21 00:00:00
prion
prion
Design/Logic Flaw
2018-06-19 05:29:00
nvd
nvd
CVE-2018-12564
2018-06-19 05:29:00
cve
cve
CVE-2018-12564
2018-06-19 05:29:00
ubuntucve
ubuntucve
CVE-2018-12564
2018-06-19 00:00:00
debian
debian
[SECURITY] [DLA 1404-1] lava-server security update
2018-06-28 20:07:10
[SECURITY] [DSA 4234-1] lava-server security update
2018-06-22 20:01:14
nessus
nessus
Debian DLA-1404-1 : lava-server security update
2018-06-29 00:00:00
Debian DSA-4234-1 : lava-server - security update
2018-06-25 00:00:00
debiancve
debiancve
CVE-2018-12564
2018-06-19 05:29:00
osv
osv
lava-server - security update
2018-06-28 00:00:00
lava-server - security update
2018-06-22 00:00:00