MEDIUM
Munin Monitoring
CVE published 2017-02-22
CVE-2017-6188
CVE-2017-6188 affects Munin's CGI graph handling. When CGI graphs are enabled, supplying multiple upper_limit GET parameters can trigger a local file write that may overwrite files accessible to www-data. The issue is publicly documented in the CVE record, NVD detail, and linked issue/advisory references.