Published: 06/02/2017 Updated: 16/02/2017

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

A file disclosure and inclusion vulnerability exists in web/views/file.php in ZoneMinder 1.x through v1.30.0 because of unfiltered user-input being passed to readfile(), which allows an authenticated malicious user to read local system files (e.g., /etc/passwd) in the context of the web server user (www-data). The attack vector is a .. (dot dot) in the path parameter within a zm/index.php?view=file&path= request.

Vulnerable Product	Search on Vulmon	Subscribe to Product
zoneminder zoneminder

Debian Bug report logs - #854272 CVE-2016-10201 CVE-2016-10202 CVE-2016-10203 CVE-2016-10204 CVE-2016-10205 CVE-2016-10206 Package: src:zoneminder; Maintainer for src:zoneminder is Dmitry Smirnov <onlyjob@debianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Sun, 5 Feb 2017 17:21:02 UTC Severity: grave ...

Debian Bug report logs - #854733 zoneminder: CVE-2017-5367 CVE-2017-5368 CVE-2017-5595 Package: src:zoneminder; Maintainer for src:zoneminder is Dmitry Smirnov <onlyjob@debianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Thu, 9 Feb 2017 22:48:01 UTC Severity: grave Tags: security Found in version zo ...

Various ZoneMinder versions suffer from authentication bypass, cross site request forgery, cross site scripting, information disclosure, and file disclosure vulnerabilities ...

CWE-200 https://github.com/ZoneMinder/ZoneMinder/commit/8b19fca9927cdec07cc9dd09bdcf2496a5ae69b3 http://seclists.org/fulldisclosure/2017/Feb/11 http://seclists.org/bugtraq/2017/Feb/6 http://www.securityfocus.com/bid/96125 https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854272

CVE-2017-5595

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect