[FEDORA-2023-d8ae3c122e] Fedora 37: mediawiki
Severity
Medium
Affected Packages
1
CVEs
2
https://lists.wikimedia.org/hyperkitty/list/mediawiki-
announce(a)lists.wikimedia.org/thread/H46H5ZYZG2PYUQ5STK7NWKF7GXYW7H6B/
| Package | Affected Version |
|---|---|
 pkg:rpm/fedora/mediawiki?distro=fedora-37
|
< 1.38.7.1.fc37 |
- ID
- FEDORA-2023-d8ae3c122e
- Severity
- medium
- Severity from
- CVE-2023-36675
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-d8ae3c122e
- Published
-
2023-09-02T01:33:42
(12 months ago) - Modified
-
2023-09-02T01:33:42
(12 months ago) - Rights
- Copyright 2023 Red Hat, Inc.
- Other Advisories
DSA-5447-1
FREEBSD:95DAD123-180E-11EE-86BA-080027EDA32C| Source | # ID | Name | URL |
|---|---|---|---|
| Bugzilla | 2233911 | Bug #2233911 - CVE-2023-36674 mediawiki: Manualthumb bypasses badFile lookup [fedora-all] |
|
| Bugzilla | 2217429 | Bug #2217429 - CVE-2023-36675 mediawiki: cross site scripting [fedora-all] |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/fedora/mediawiki?distro=fedora-37 | fedora |
mediawiki
|
< 1.38.7.1.fc37 | fedora-37 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |