Lucene search
Copyright (C) 2024 Greenbone AGOPENVAS:1361412562310886840HistoryMay 27, 2024 - 12:00 a.m.
Fedora: Security Advisory for php-oojs-oojs-ui (FEDORA-2024-2c564b942d)
2024-05-2700:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
1
fedora
security advisory
php-oojs-oojs-ui
object-oriented javascript
user interface
package
vendorfix
cve-2023-3550
cve-2023-45360
cve-2023-45362
cve-2023-51704
cve-2024-34507
cve-2024-34506
cve-2024-34500
cve-2024-34502
fc40
greenbone ag
vulnerable package
update
rapid development
7.3 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
5.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.9%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.886840");
script_version("2024-06-07T05:05:42+0000");
script_cve_id("CVE-2023-3550", "CVE-2023-45360", "CVE-2023-45362", "CVE-2023-51704", "CVE-2024-34507", "CVE-2024-34506", "CVE-2024-34500", "CVE-2024-34502");
script_tag(name:"cvss_base", value:"8.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:C/I:C/A:N");
script_tag(name:"last_modification", value:"2024-06-07 05:05:42 +0000 (Fri, 07 Jun 2024)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2023-09-25 16:15:14 +0000 (Mon, 25 Sep 2023)");
script_tag(name:"creation_date", value:"2024-05-27 10:49:04 +0000 (Mon, 27 May 2024)");
script_name("Fedora: Security Advisory for php-oojs-oojs-ui (FEDORA-2024-2c564b942d)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2024 Greenbone AG");
script_family("Fedora Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC40");
script_xref(name:"Advisory-ID", value:"FEDORA-2024-2c564b942d");
script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FU2FGUXXK6TMV6R52VRECLC6XCSQQISY");
script_tag(name:"summary", value:"The remote host is missing an update for the 'php-oojs-oojs-ui'
package(s) announced via the FEDORA-2024-2c564b942d advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"OOjs UI (Object-Oriented JavaScript User Interface) is a library that allows
developers to rapidly create front-end web applications that operate
consistently across a multitude of browsers.");
script_tag(name:"affected", value:"'php-oojs-oojs-ui' package(s) on Fedora 40.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "FC40") {
if(!isnull(res = isrpmvuln(pkg:"php-oojs-oojs-ui", rpm:"php-oojs-oojs-ui~0.48.1~1.fc40", rls:"FC40"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);Related
fedora
fedora
[SECURITY] Fedora 40 Update: php-wikimedia-cdb-3.0.0-1.fc40
2024-05-11 01:32:03
[SECURITY] Fedora 40 Update: php-oojs-oojs-ui-0.48.1-1.fc40
2024-05-11 01:32:03
[SECURITY] Fedora 40 Update: mediawiki-1.41.1-1.fc40
2024-05-11 01:32:02
openvas
openvas
Fedora: Security Advisory for mediawiki (FEDORA-2024-2c564b942d)
2024-05-27 00:00:00
Fedora: Security Advisory for php-wikimedia-cdb (FEDORA-2024-2c564b942d)
2024-05-27 00:00:00
nessus
nessus
Fedora 40 : mediawiki / php-oojs-oojs-ui / php-wikimedia-cdb / etc (2024-2c564b942d)
2024-05-11 00:00:00
Debian DLA-3671-1 : mediawiki - LTS security update
2023-11-28 00:00:00
Debian DSA-5520-1 : mediawiki - security update
2023-10-10 00:00:00
osv
osv
mediawiki - security update
2023-10-10 00:00:00
mediawiki - security update
2023-11-28 00:00:00
mediawiki - security update
2024-04-27 00:00:00
redos
redos
ROS-20240514-01
2024-05-14 00:00:00
ROS-20240408-19
2024-04-08 00:00:00
ROS-20240505-13
2024-04-05 00:00:00
mageia
mageia
Updated mediawiki packages fix security vulnerabilities
2024-05-01 01:25:14
debian
debian
[SECURITY] [DLA 3671-1] mediawiki security update
2023-11-28 11:46:19
[SECURITY] [DSA 5520-1] mediawiki security update
2023-10-10 19:25:45
[SECURITY] [DLA 3796-1] mediawiki security update
2024-04-27 16:55:17
cve
cve
redhatcve
redhatcve
cvelist
cvelist
vulnrichment
vulnrichment
nvd
nvd
prion
prion
Cross site scripting
2023-12-22 02:15:00
Design/Logic Flaw
2023-11-03 05:15:00
Design/Logic Flaw
2023-11-03 05:15:00
debiancve
debiancve
ubuntucve
ubuntucve
veracode
veracode
Remote Code Execution (RCE)
2023-10-10 01:54:49
Cross-site Scripting (XSS)
2023-10-10 01:54:39
Cross Site Scripting(XSS)
2024-01-13 02:39:54
freebsd
freebsd
mediawiki -- multiple vulnerabilities
2023-09-01 00:00:00
cnvd
cnvd
Mediawiki input validation error vulnerability (CNVD-2023-79688)
2023-09-27 00:00:00
7.3 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
5.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.9%
Related for OPENVAS:1361412562310886840