Ubuntu Security Update USN-6243-1: Graphite-Web vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,928
Reaction score
75
Credits
-1,257
It was discovered that Graphite-Web incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to perform server-side request forgery and obtain sensitive information. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2017-18638) It was discovered that Graphite-Web incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to perform cross site scripting and obtain sensitive information. (CVE-2022-4728, CVE-2022-4729, CVE-2022-4730)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8251-1: libpng vulnerabilities
Replies
0
Views
115
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8336-1: PHP vulnerabilities
Replies
0
Views
98
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8263-1: ImageMagick vulnerabilities
Replies
0
Views
149
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8147-1: libarchive vulnerabilities
Replies
0
Views
208
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-7985-1: TeX Live vulnerabilities
Replies
0
Views
111
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 3,328 (members: 5, guests: 3,323)

Latest posts

Top