Medium severity5.5NVD Advisory· Published Feb 22, 2017· Updated Jun 17, 2026
CVE-2017-6188
CVE-2017-6188
Description
Munin before 2.999.6 has a local file write vulnerability when CGI graphs are enabled. Setting multiple upper_limit GET parameters allows overwriting any file accessible to the www-data user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:munin-monitoring:munin:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:munin-monitoring:munin:*:*:*:*:*:*:*:*range: <2.0.30.1
- (no CPE)range: <2.999.6
Patches
Vulnerability mechanics
References
5- github.com/munin-monitoring/munin/issues/721nvdIssue TrackingPatchThird Party Advisory
- www.securityfocus.com/bid/96399nvdThird Party AdvisoryVDB Entry
- bugs.debian.org/855705nvdIssue TrackingThird Party Advisory
- security.gentoo.org/glsa/201710-05nvdThird Party Advisory
- www.debian.org/security/2017/dsa-3794nvdThird Party Advisory
News mentions
0No linked articles in our index yet.