CVE-2020-15005

Description

In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34.x before 1.34.2, private wikis behind a caching server using the img_auth.php image authorization security feature may have had their files cached publicly, so any unauthorized user could view them. This occurs because Cache-Control and Vary headers were mishandled.

How to fix CVE-2020-15005

To remediate CVE-2020-15005, upgrade the affected package to a fixed version below.

• —upgrade to 1.31.8 or later
• —upgrade to 1:1.31.8-1 or later
• —upgrade to 1:1.27.7-1~deb9u7 or later
• —upgrade to 1:1.31.10-1~deb10u1 or later
• —upgrade to 1.31.8 or later

Is CVE-2020-15005 being exploited?

Low — EPSS is 0.7%, meaning exploitation activity has not been observed at scale.

Affected packages (5)

• from 0, < 1.31.8, >= 1.32.0, < 1.33.4, >= 1.34.0, < 1.34.2
• from 0, < 1:1.31.8-1
• from 0, < 1:1.27.7-1~deb9u7
• from 0, < 1:1.31.10-1~deb10u1
• from 0, < 1.31.8

CVSS scores

References (12)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2020-15005
• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2020-15005
• PATCHgithub.com/wikimedia/mediawiki
• WEBgerrit.wikimedia.org/r/plugins/gitiles/mediawiki/core/+/REL1_31/RELEASE-NOTES-1.31