Lucene search
UbuntuUSN-4953-1HistoryMay 13, 2021 - 12:00 a.m.
AWStats vulnerabilities
2021-05-1300:00:00
ubuntu.com
145
Releases
- Ubuntu 20.10
- Ubuntu 20.04 LTS
- Ubuntu 18.04 ESM
- Ubuntu 16.04 ESM
Packages
- awstats - powerful and featureful web server log analyzer
Details
Sean Boran discovered that AWStats incorrectly filtered certain parameters.
A remote attacker could possibly use this issue to execute arbitrary code.
(CVE-2020-29600)
It was discovered that AWStats incorrectly filtered certain parameters. A
remote attacker could possibly use this issue to access sensitive
information. (CVE-2020-35176)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 20.10 | noarch | awstats | < 7.6+dfsg-2ubuntu0.20.10.1 | UNKNOWN |
| Ubuntu | 20.04 | noarch | awstats | < 7.6+dfsg-2ubuntu0.20.04.1 | UNKNOWN |
| Ubuntu | 18.04 | noarch | awstats | < 7.6+dfsg-2ubuntu0.18.04.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | awstats | < 7.4+dfsg-1ubuntu0.4+esm1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | awstats | < 7.4+dfsg-1ubuntu0.3 | UNKNOWN |
Related
openvas
openvas
AWStats <= 7.8 File Read Vulnerability
2020-12-18 00:00:00
Ubuntu: Security Advisory (USN-4953-1)
2021-05-14 00:00:00
Fedora: Security Advisory for awstats (FEDORA-2020-d1aa0e030c)
2021-01-11 00:00:00
veracode
veracode
Arbitrary File Read
2020-12-23 21:54:26
Remote Code Execution
2020-12-13 04:24:57
Remote Code Execution
2020-05-10 23:23:54
cvelist
cvelist
CVE-2020-35176
2020-12-11 23:16:22
CVE-2020-29600
2020-12-07 19:52:14
CVE-2017-1000501
2018-01-03 15:00:00
ubuntucve
ubuntucve
CVE-2020-29600
2020-12-07 00:00:00
CVE-2020-35176
2020-12-12 00:00:00
CVE-2017-1000501
2018-01-03 00:00:00
osv
osv
awstats vulnerabilities
2021-05-13 17:12:49
CVE-2020-35176
2020-12-12 00:15:12
awstats - security update
2020-12-23 00:00:00
prion
prion
debiancve
debiancve
CVE-2020-35176
2020-12-12 00:15:00
CVE-2020-29600
2020-12-07 20:15:00
CVE-2017-1000501
2018-01-03 15:29:00
archlinux
archlinux
[ASA-202103-15] awstats: directory traversal
2021-03-25 00:00:00
freebsd
freebsd
www/awstats -- Partial absolute pathname
2022-12-11 00:00:00
awstats -- remote code execution
2018-01-03 00:00:00
redhatcve
redhatcve
CVE-2020-35176
2022-05-20 23:27:46
CVE-2020-29600
2022-05-20 23:23:57
nessus
nessus
FreeBSD : www/awstats -- Partial absolute pathname (bba3f684-9b1d-11ed-9a3f-b42e991fc52e)
2023-01-23 00:00:00
Fedora 32 : awstats (2020-d1aa0e030c)
2021-01-11 00:00:00
alpinelinux
alpinelinux
CVE-2020-35176
2020-12-12 00:15:00
CVE-2020-29600
2020-12-07 20:15:00
CVE-2017-1000501
2018-01-03 15:29:00
cve
cve
CVE-2020-35176
2020-12-12 00:15:00
CVE-2020-29600
2020-12-07 20:15:00
CVE-2017-1000501
2018-01-03 15:29:00
debian
debian
[SECURITY] [DLA 2506-1] awstats security update
2020-12-23 15:18:42
[SECURITY] [DSA 4092-1] awstats security update
2018-01-19 09:13:06
[SECURITY] [DLA 1238-1] awstats security update
2018-01-10 06:00:30
fedora
fedora
[SECURITY] Fedora 32 Update: awstats-7.8-2.fc32
2021-01-08 02:52:03
[SECURITY] Fedora 26 Update: awstats-7.6-4.fc26
2018-01-16 16:57:11
[SECURITY] Fedora 33 Update: awstats-7.8-2.fc33
2021-01-08 03:05:38
gentoo
gentoo
AWStats: Multiple vulnerabilities
2020-07-27 00:00:00
ubuntu
ubuntu
AWStats vulnerability
2018-01-08 00:00:00
mageia
mageia
Updated awstats packages fix security vulnerability
2018-01-03 17:22:14
Updated awstats package fixes a security vulnerability
2021-01-14 18:13:25