Lucene search
Copyright (C) 2024 Greenbone AGOPENVAS:1361412562310886467HistoryMay 27, 2024 - 12:00 a.m.
Fedora: Security Advisory for php-wikimedia-utfnormal (FEDORA-2024-2c564b942d)
2024-05-2700:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
8
fedora
security advisory
php-wikimedia-utfnormal
fedora-2024-2c564b942d
unicode
mediawiki
update
package
vendorfix
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
51.1%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.886467");
script_version("2024-09-05T12:18:34+0000");
script_cve_id("CVE-2023-3550", "CVE-2023-45360", "CVE-2023-45362", "CVE-2023-51704", "CVE-2024-34507", "CVE-2024-34506", "CVE-2024-34500", "CVE-2024-34502");
script_tag(name:"cvss_base", value:"8.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:C/I:C/A:N");
script_tag(name:"last_modification", value:"2024-09-05 12:18:34 +0000 (Thu, 05 Sep 2024)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2023-09-25 16:15:14 +0000 (Mon, 25 Sep 2023)");
script_tag(name:"creation_date", value:"2024-05-27 10:41:17 +0000 (Mon, 27 May 2024)");
script_name("Fedora: Security Advisory for php-wikimedia-utfnormal (FEDORA-2024-2c564b942d)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2024 Greenbone AG");
script_family("Fedora Local Security Checks");
script_xref(name:"Advisory-ID", value:"FEDORA-2024-2c564b942d");
script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B5QVEBZH5TAP76ULRMAEKFJLQ3NOOJNT");
script_tag(name:"summary", value:"The remote host is missing an update for the 'php-wikimedia-utfnormal'
package(s) announced via the FEDORA-2024-2c564b942d advisory.
Note: This VT has been deprecated as a duplicate.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"utfnormal is a library that contains unicode normalization functions. It was
split out of MediaWiki core during the 1.25 development cycle.");
script_tag(name:"affected", value:"'php-wikimedia-utfnormal' package(s) on Fedora 40.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
script_tag(name:"deprecated", value:TRUE);
exit(0);
}
exit(66);
Related
fedora
fedora
[SECURITY] Fedora 40 Update: php-wikimedia-utfnormal-4.0.0-1.fc40
2024-05-11 01:32:03
[SECURITY] Fedora 40 Update: php-oojs-oojs-ui-0.48.1-1.fc40
2024-05-11 01:32:03
[SECURITY] Fedora 40 Update: php-wikimedia-cdb-3.0.0-1.fc40
2024-05-11 01:32:03
openvas
openvas
Fedora: Security Advisory for mediawiki (FEDORA-2024-2c564b942d)
2024-05-27 00:00:00
Fedora: Security Advisory (FEDORA-2024-2c564b942d)
2024-05-27 00:00:00
Fedora: Security Advisory for php-oojs-oojs-ui (FEDORA-2024-2c564b942d)
2024-05-27 00:00:00
nessus
nessus
Fedora 40 : mediawiki / php-oojs-oojs-ui / php-wikimedia-cdb / etc (2024-2c564b942d)
2024-05-11 00:00:00
Debian DLA-3671-1 : mediawiki - LTS security update
2023-11-28 00:00:00
Debian DSA-5520-1 : mediawiki - security update
2023-10-10 00:00:00
osv
osv
mediawiki - security update
2023-10-10 00:00:00
mediawiki - security update
2023-11-28 00:00:00
mediawiki - security update
2024-04-27 00:00:00
redos
redos
ROS-20240927-07
2024-09-27 00:00:00
ROS-20240514-01
2024-05-14 00:00:00
ROS-20240827-07
2024-08-27 00:00:00
mageia
mageia
Updated mediawiki packages fix security vulnerabilities
2024-05-01 01:25:14
debian
debian
[SECURITY] [DLA 3671-1] mediawiki security update
2023-11-28 11:46:19
[SECURITY] [DSA 5520-1] mediawiki security update
2023-10-10 19:25:45
[SECURITY] [DLA 3796-1] mediawiki security update
2024-04-27 16:55:17
vulnrichment
vulnrichment
prion
prion
Cross site scripting
2023-12-22 02:15:00
Design/Logic Flaw
2023-11-03 05:15:00
Design/Logic Flaw
2023-11-03 05:15:00
cve
cve
nvd
nvd
debiancve
debiancve
cvelist
cvelist
redhatcve
redhatcve
veracode
veracode
Denial Of Service (DoS)
2024-05-14 08:10:39
Remote Code Execution (RCE)
2023-10-10 01:54:49
Cross-site Scripting (XSS)
2024-05-14 08:10:39
ubuntucve
ubuntucve
freebsd
freebsd
mediawiki -- multiple vulnerabilities
2023-09-01 00:00:00
cnvd
cnvd
Mediawiki input validation error vulnerability (CNVD-2023-79688)
2023-09-27 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
51.1%
Related for OPENVAS:1361412562310886467