CVE-2012-3448 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:P/I:P/A:P
redhat	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 95%

Vendor	Product	Version
ganglia	ganglia-web	𝑥 ≤ 3.5.0
ganglia	ganglia-web	2.1.0
ganglia	ganglia-web	2.1.1
ganglia	ganglia-web	2.1.2
ganglia	ganglia-web	2.1.3
ganglia	ganglia-web	2.1.5
ganglia	ganglia-web	2.1.6
ganglia	ganglia-web	2.1.7
ganglia	ganglia-web	2.1.8
ganglia	ganglia-web	2.2.0
ganglia	ganglia-web	3.3.0
ganglia	ganglia-web	3.3.1
ganglia	ganglia-web	3.4.1
ganglia	ganglia-web	3.4.2

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

ganglia

bullseye	3.7.2-4 fixed
bookworm	3.7.2-6 fixed
sid	3.7.2-7 fixed

Ubuntu Releases

Ubuntu Product

Codename

ganglia

zesty	not-affected
yakkety	not-affected
xenial	not-affected
wily	not-affected
vivid	not-affected
utopic	not-affected
trusty	not-affected
saucy	not-affected
raring	ignored
quantal	ignored
precise	ignored
oneiric	ignored
natty	ignored
lucid	ignored
hardy	dne

References

http://ganglia.info/?p=549

http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084196.html

http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084202.html

http://secunia.com/advisories/50047

http://www.debian.org/security/2013/dsa-2610

http://www.openwall.com/lists/oss-security/2012/08/02/1

http://www.securityfocus.com/bid/54699

https://bugs.gentoo.org/show_bug.cgi?id=428776

https://bugzilla.redhat.com/show_bug.cgi?id=845124

https://www.exploit-db.com/exploits/38030/

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00136.html

http://ganglia.info/?p=549

http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084196.html

http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084202.html

http://secunia.com/advisories/50047

http://www.debian.org/security/2013/dsa-2610

http://www.openwall.com/lists/oss-security/2012/08/02/1

http://www.securityfocus.com/bid/54699

https://bugs.gentoo.org/show_bug.cgi?id=428776

https://bugzilla.redhat.com/show_bug.cgi?id=845124

https://www.exploit-db.com/exploits/38030/

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00136.html