Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2015-8005
HistoryNov 09, 2015 - 12:00 a.m.

CVE-2015-8005

2015-11-0900:00:00
ubuntu.com
ubuntu.com
7

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

70.4%

JSON

MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3
uses the thumbnail ImageMagick command line argument, which allows remote
attackers to obtain the installation path by reading the metadata of a PNG
thumbnail file.

Notes

Author Note
sbeattie mediawiki package have a known default install location on debian/ubuntu, so not likely exposing info that isn’t already known

Related

cve 1
cvelist 1
nvd 1
debiancve 1
prion 1
mageia 1
openvas 5
nessus 5
fedora 3
freebsd 1
cve
cve
CVE-2015-8005
2015-11-09 18:59:04
cvelist
cvelist
CVE-2015-8005
2015-11-09 18:00:00
nvd
nvd
CVE-2015-8005
2015-11-09 18:59:04
debiancve
debiancve
CVE-2015-8005
2015-11-09 18:59:04
prion
prion
Design/Logic Flaw
2015-11-09 18:59:00
mageia
mageia
Updated mediawiki packages fix security vulnerabilities
2015-11-02 23:21:29
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0421)
2015-11-08 00:00:00
MediaWiki Multiple Vulnerabilities (Nov 2015) - Windows
2015-11-25 00:00:00
MediaWiki Multiple Vulnerabilities (Nov 2015) - Linux
2015-11-25 00:00:00
nessus
nessus
MediaWiki < 1.23.11 / 1.24.4 / 1.25.3 Multiple Vulnerabilities
2016-08-05 00:00:00
Fedora 23 : mediawiki-1.25.3-1.fc23 (2015-ec6d598d3d)
2016-03-04 00:00:00
Fedora 21 : mediawiki-1.24.4-1.fc21 (2015-97fe05f788)
2016-03-04 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: mediawiki-1.25.3-1.fc22
2015-11-05 23:27:59
[SECURITY] Fedora 21 Update: mediawiki-1.24.4-1.fc21
2015-11-05 21:50:58
[SECURITY] Fedora 23 Update: mediawiki-1.25.3-1.fc23
2015-11-05 22:26:54
freebsd
freebsd
mediawiki -- multiple vulnerabilities
2015-10-16 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

70.4%

JSON
Related for UB:CVE-2015-8005
cve1cvelist1nvd1debiancve1prion1mageia1openvas5nessus5fedora3freebsd1