CVE-2018-7490

🗓️ 26 Feb 2018 22:00:29Reported by [email protected]Type

uWSGI 2.0.17 Document Root Check Vulnerability CVE-2018-749

Reporter	Title	Published	Views	Family All 29
Packet Storm	uWSGI Directory Traversal	2 Mar 201800:00	–	packetstorm
Fedora	[SECURITY] Fedora 28 Update: uwsgi-2.0.17.1-1.fc28	20 Jul 201817:45	–	fedora
Fedora	[SECURITY] Fedora 27 Update: uwsgi-2.0.17.1-1.fc27	20 Jul 201816:59	–	fedora
Veracode	Directory Traversal	27 Feb 201805:51	–	veracode
Tenable Nessus	Fedora 28 : uwsgi (2018-acfce682f4)	3 Jan 201900:00	–	nessus
Tenable Nessus	Fedora 27 : uwsgi (2018-04b3af1edf)	24 Jul 201800:00	–	nessus
Tenable Nessus	Debian DSA-4142-1 : uwsgi - security update	19 Mar 201800:00	–	nessus
OSV	uwsgi - security update	17 Mar 201800:00	–	osv
OSV	PYSEC-2018-78	26 Feb 201822:29	–	osv
OSV	CVE-2018-7490	26 Feb 201822:29	–	osv

Nvd

Node

unbit uwsgiRange<2.0.17

Node

debian debian_linuxMatch8.0

debian debian_linuxMatch9.0

Source	Link
uwsgi-docs	www.uwsgi-docs.readthedocs.io/en/latest/Changelog-2.0.17.html
exploit-db	www.exploit-db.com/exploits/44223/
debian	www.debian.org/security/2018/dsa-4142

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Feb 2018 22:29Current

8High risk

Vulners AI Score8

CVSS25

CVSS37.5

EPSS0.90908

CWE-22