CVE-2012-3513
munin-cgi-graph in Munin before 2.0.6, when running as a CGI module under Apache, allows remote attackers to load new configurations and create files in arbitrary directories via the logdir command.
| Software | From | Fixed in |
|---|---|---|
| munin-monitoring / munin | 2.0.2 | 2.0.2.x |
| munin-monitoring / munin | 2.0-beta3 | 2.0-beta3.x |
| munin-monitoring / munin | 2.0-beta4 | 2.0-beta4.x |
| munin-monitoring / munin | 2.0-rc3 | 2.0-rc3.x |
| munin-monitoring / munin | 2.0-beta5 | 2.0-beta5.x |
| munin-monitoring / munin | 2.0.1 | 2.0.1.x |
| munin-monitoring / munin | - | 2.0.5.x |
| munin-monitoring / munin | 2.0-rc5 | 2.0-rc5.x |
| munin-monitoring / munin | 2.0-beta2 | 2.0-beta2.x |
| munin-monitoring / munin | 2.0-beta7 | 2.0-beta7.x |
| munin-monitoring / munin | 2.0-rc6 | 2.0-rc6.x |
| munin-monitoring / munin | 2.0-rc1 | 2.0-rc1.x |
| munin-monitoring / munin | 2.0.0 | 2.0.0.x |
| munin-monitoring / munin | 2.0-beta1 | 2.0-beta1.x |
| munin-monitoring / munin | 2.0-rc7 | 2.0-rc7.x |
| munin-monitoring / munin | 2.0.3 | 2.0.3.x |
| munin-monitoring / munin | 2.0-rc2 | 2.0-rc2.x |
| munin-monitoring / munin | 2.0-rc4 | 2.0-rc4.x |
| munin-monitoring / munin | 2.0-beta6 | 2.0-beta6.x |
| munin-monitoring / munin | 2.0.4 | 2.0.4.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime