| Max CVSS | 9.3 | Min CVSS | 1.2 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-2103 | 1.2 |
The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
|
29-08-2017 - 01:31 | 26-08-2012 - 21:55 | |
| CVE-2012-3512 | 7.2 |
Munin before 2.0.6 stores plugin state files that run as root in the same group-writable directory as non-root plugins, which allows local users to execute arbitrary code by replacing a state file, as demonstrated using the smart_ plugin.
|
05-04-2013 - 03:12 | 21-11-2012 - 23:55 | |
| CVE-2012-3513 | 9.3 |
munin-cgi-graph in Munin before 2.0.6, when running as a CGI module under Apache, allows remote attackers to load new configurations and create files in arbitrary directories via the logdir command.
|
23-11-2012 - 11:24 | 21-11-2012 - 23:55 |