CVE-2016-9645

MEDIUM

ikiwiki < 2.8 - Editing Restriction Bypass via Git Revert

Title source: llm
STIX 2.1

Description

The fix for ikiwiki for CVE-2016-10026 was incomplete resulting in editing restriction bypass for git revert when using git versions older than 2.8.0. This has been fixed in 3.20161229.

References (3)

Core 3
Core References
Third Party Advisory x_refsource_misc
https://security-tracker.debian.org/tracker/CVE-2016-9645
Vendor Advisory x_refsource_misc
https://ikiwiki.info/security/#cve-2016-9645
Third Party Advisory x_refsource_misc
https://marc.info/?l=oss-security&m=148304341511854&w=2

Scores

CVSS v3 6.5
EPSS 0.0094
EPSS Percentile 56.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-284
Status published
Products (1)
ikiwiki/ikiwiki < 2.8
Published Apr 10, 2018
Tracked Since Feb 18, 2026