CVE-2012-4678
EPSS 1.9%
Description
munin-cgi-graph for Munin 2.0 rc4 does not delete temporary files, which allows remote attackers to cause a denial of service (disk consumption) via many requests to an image with unique parameters.
How to fix CVE-2012-4678
To remediate CVE-2012-4678, upgrade the affected package to a fixed version below.
- Debian/munin—upgrade to 2.0~rc6-1 or later
Is CVE-2012-4678 being exploited?
Low — EPSS is 1.9%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.0~rc6-1