Vulnerability Details CVE-2016-9839
In MapServer before 7.0.3, OGR driver error messages are too verbose and may leak sensitive information if data connection fails.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.0%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2016-9839
-
cpe:2.3:a:osgeo:mapserver:4.10.0
-
cpe:2.3:a:osgeo:mapserver:4.10.1
-
cpe:2.3:a:osgeo:mapserver:4.10.2
-
cpe:2.3:a:osgeo:mapserver:4.10.3
-
cpe:2.3:a:osgeo:mapserver:4.10.4
-
cpe:2.3:a:osgeo:mapserver:4.10.5
-
cpe:2.3:a:osgeo:mapserver:4.2.0
-
cpe:2.3:a:osgeo:mapserver:4.2.1
-
cpe:2.3:a:osgeo:mapserver:4.2.2
-
cpe:2.3:a:osgeo:mapserver:4.2.3
-
cpe:2.3:a:osgeo:mapserver:4.2.4
-
cpe:2.3:a:osgeo:mapserver:4.2.5
-
cpe:2.3:a:osgeo:mapserver:4.4.0
-
cpe:2.3:a:osgeo:mapserver:4.4.1
-
cpe:2.3:a:osgeo:mapserver:4.4.2
-
cpe:2.3:a:osgeo:mapserver:4.6.0
-
cpe:2.3:a:osgeo:mapserver:4.6.1
-
cpe:2.3:a:osgeo:mapserver:4.6.2
-
cpe:2.3:a:osgeo:mapserver:4.8.0
-
cpe:2.3:a:osgeo:mapserver:4.8.1
-
cpe:2.3:a:osgeo:mapserver:4.8.2
-
cpe:2.3:a:osgeo:mapserver:4.8.3
-
cpe:2.3:a:osgeo:mapserver:4.8.4
-
cpe:2.3:a:osgeo:mapserver:5.0.0
-
cpe:2.3:a:osgeo:mapserver:5.2
-
cpe:2.3:a:osgeo:mapserver:5.2.0
-
cpe:2.3:a:osgeo:mapserver:5.2.1
-
cpe:2.3:a:osgeo:mapserver:5.4
-
cpe:2.3:a:osgeo:mapserver:5.4.0
-
cpe:2.3:a:osgeo:mapserver:5.4.1
-
cpe:2.3:a:osgeo:mapserver:5.4.2
-
cpe:2.3:a:osgeo:mapserver:5.6.0
-
cpe:2.3:a:osgeo:mapserver:5.6.1
-
cpe:2.3:a:osgeo:mapserver:5.6.2
-
cpe:2.3:a:osgeo:mapserver:5.6.3
-
cpe:2.3:a:osgeo:mapserver:5.6.4
-
cpe:2.3:a:osgeo:mapserver:5.6.5
-
cpe:2.3:a:osgeo:mapserver:5.6.6
-
cpe:2.3:a:osgeo:mapserver:5.6.7
-
cpe:2.3:a:osgeo:mapserver:5.6.8
-
cpe:2.3:a:osgeo:mapserver:5.6.9
-
cpe:2.3:a:osgeo:mapserver:6.0.0
-
cpe:2.3:a:osgeo:mapserver:6.0.1
-
cpe:2.3:a:osgeo:mapserver:6.0.2
-
cpe:2.3:a:osgeo:mapserver:6.0.3
-
cpe:2.3:a:osgeo:mapserver:6.0.4
-
cpe:2.3:a:osgeo:mapserver:6.0.5
-
cpe:2.3:a:osgeo:mapserver:6.0.6
-
cpe:2.3:a:osgeo:mapserver:6.2.0
-
cpe:2.3:a:osgeo:mapserver:6.2.1
-
cpe:2.3:a:osgeo:mapserver:6.2.2
-
cpe:2.3:a:osgeo:mapserver:6.2.3
-
cpe:2.3:a:osgeo:mapserver:6.2.4
-
cpe:2.3:a:osgeo:mapserver:6.4.0
-
cpe:2.3:a:osgeo:mapserver:6.4.1
-
cpe:2.3:a:osgeo:mapserver:6.4.2
-
cpe:2.3:a:osgeo:mapserver:6.4.3
-
cpe:2.3:a:osgeo:mapserver:6.4.4
-
cpe:2.3:a:osgeo:mapserver:6.4.5
-
cpe:2.3:a:osgeo:mapserver:6.4.6
-
cpe:2.3:a:osgeo:mapserver:7.0.0
-
cpe:2.3:a:osgeo:mapserver:7.0.1
-
cpe:2.3:a:osgeo:mapserver:7.0.2