VYPR
← All advisories
Unrated severityNVD Advisory· Published Nov 21, 2012· Updated Apr 29, 2026

CVE-2012-3513

CVE-2012-3513

Description

munin-cgi-graph in Munin before 2.0.6, when running as a CGI module under Apache, allows remote attackers to load new configurations and create files in arbitrary directories via the logdir command.

Affected products

20
  • Munin Monitoring/Munin20 versions
    cpe:2.3:a:munin-monitoring:munin:*:*:*:*:*:*:*:*+ 19 more
    • cpe:2.3:a:munin-monitoring:munin:*:*:*:*:*:*:*:*range: <=2.0.5
    • cpe:2.3:a:munin-monitoring:munin:2.0-beta1:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-beta2:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-beta3:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-beta4:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-beta5:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-beta6:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-beta7:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-rc3:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-rc4:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-rc5:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-rc6:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0-rc7:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:munin-monitoring:munin:2.0.4:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.