CVE-2020-35176 — Path Traversal in Awstats

CWE-22 — Path Traversal6 documents5 sources

Severity

5.3MEDIUMNVD

OSV9.8

EPSS

0.9%

top 23.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Awstats Debian Awstats Debian Linux +1 more

Timeline

PublishedDec 12

Latest updateMay 24

Description

In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a partial absolute pathname (omitting the initial /etc), even though it was intended to only read a file in the /etc/awstats/awstats.conf format. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000501 and CVE-2020-29600.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages4 packages

▶debiandebian/awstats< awstats 7.8-2 (bookworm)

▶Debianawstats/awstats< 7.8-2+3

▶Ubuntuawstats/awstats< 7.6+dfsg-2ubuntu0.18.04.1+2

▶NVDawstats/awstats7.8

Also affects: Debian Linux 9.0, Fedora 32, 33

🔴Vulnerability Details

GHSA

GHSA-6hh4-7wc7-6vq9: In AWStats through 7↗2022-05-24

▶

OSV

awstats vulnerabilities↗2021-05-13

▶

OSV

CVE-2020-35176: In AWStats through 7↗2020-12-12

▶

📋Vendor Advisories

Ubuntu

AWStats vulnerabilities↗2021-05-13

▶

Debian

CVE-2020-35176: awstats - In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a partial absolute pa...↗2020

▶