CVE-2018-0503

CVSS v3.0 4.3 (Medium)

CVSS v2.0 4 (Medium)

EPSS 0.20 % (59^th)

Affected Products 2

Advisories 7

Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where contrary to the documentation, $wgRateLimits entry for 'user' overrides that for 'newbie'.

Weaknesses

CWE-269: Improper Privilege Management

CVE Status: PUBLISHED
CNA: Debian GNU/Linux
Published Date: 2018-10-04 20:29:00
(6 years ago)
Updated Date: 2019-10-18 04:15:10
(4 years ago)

Affected Products

Debian

Debian Linux

Mediawiki

Mediawiki

Configuration #1

	CPE23	From	Up To
Mediawiki from 1.31.0 version and prior 1.31.1 version	cpe:2.3:a:mediawiki:mediawiki	>= 1.31.0	< 1.31.1
Mediawiki 1.27.5	cpe:2.3:a:mediawiki:mediawiki:1.27.5
Mediawiki 1.29.3	cpe:2.3:a:mediawiki:mediawiki:1.29.3
Mediawiki 1.30.1	cpe:2.3:a:mediawiki:mediawiki:1.30.1

Configuration #2

		CPE23	From	Up To
	Debian Linux 9.0	cpe:2.3:o:debian:debian_linux:9.0