Vulnerability Details CVE-2018-14429
man-cgi before 1.16 allows Local File Inclusion via absolute path traversal, as demonstrated by a cgi-bin/man-cgi?/etc/passwd URI.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.4%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2018-14429
-
cpe:2.3:a:man-cgi_project:man-cgi:1.10
-
cpe:2.3:a:man-cgi_project:man-cgi:1.11
-
cpe:2.3:a:man-cgi_project:man-cgi:1.12
-
cpe:2.3:a:man-cgi_project:man-cgi:1.13
-
cpe:2.3:a:man-cgi_project:man-cgi:1.14
-
cpe:2.3:a:man-cgi_project:man-cgi:1.15