CVE-2020-15005 — Sensitive Information Exposure in Mediawiki

CWE-200 — Sensitive Information Exposure8 documents6 sources

Severity

3.1LOWNVD

EPSS

0.7%

top 27.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mediawiki Mediawiki Core Debian Mediawiki +2 more

Timeline

PublishedJun 24

Latest updateMay 24

Description

In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34.x before 1.34.2, private wikis behind a caching server using the img_auth.php image authorization security feature may have had their files cached publicly, so any unauthorized user could view them. This occurs because Cache-Control and Vary headers were mishandled.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:NExploitability: 1.6 | Impact: 1.4

Affected Packages4 packages

▶Packagistmediawiki/core1.32.0 — 1.33.4+2

▶debiandebian/mediawiki< mediawiki 1:1.31.8-1 (bookworm)

▶NVDmediawiki/mediawiki1.32.0 — 1.33.4+2

▶Debianmediawiki/mediawiki< 1:1.31.8-1+3

Also affects: Debian Linux 10.0, 9.0, Fedora 32

Patches

Patch: phabricator.wikimedia.org ↗Patch: phabricator.wikimedia.org ↗

🔴Vulnerability Details

OSV

img_auth.php may leak private extension images into the public cache↗2022-05-24

▶

GHSA

img_auth.php may leak private extension images into the public cache↗2022-05-24

▶

OSV

CVE-2020-15005: In MediaWiki before 1↗2020-06-24

▶

📋Vendor Advisories

Red Hat

mediawiki: possible leak of private extension images into public cache↗2020-06-24

▶

Debian

CVE-2020-15005: mediawiki - In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34.x before 1...↗2020

▶

💬Community

Bugzilla

CVE-2020-15005 mediawiki: possible leak of private extension images into public cache↗2020-06-25

▶

Bugzilla

CVE-2020-15005 mediawiki: possible leak of private extension images into public cache [fedora-all]↗2020-06-25

▶