CVE-2018-11652

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-11652

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-11652.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2018-11652

Related

UBUNTU-CVE-2018-11652

Published

2018-06-01T15:29:00Z

Modified

2024-09-18T02:56:30.488873Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers to inject arbitrary OS commands via the Server field in an HTTP response header, which is directly injected into a CSV report.

References

Affected packages

Alpine:v3.11 / nikto

Package

Name: nikto
Purl: pkg:apk/alpine/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.1.6-r2

Affected versions

2.*

2.1.5-r0

2.1.5-r1

2.1.5-r2

2.1.6-r0

2.1.6-r1

Alpine:v3.12 / nikto

Package

Name: nikto
Purl: pkg:apk/alpine/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.1.6-r2

Affected versions

2.*

2.1.5-r0

2.1.5-r1

2.1.5-r2

2.1.6-r0

2.1.6-r1

Alpine:v3.13 / nikto

Package

Name: nikto
Purl: pkg:apk/alpine/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.1.6-r2

Affected versions

2.*

2.1.5-r0

2.1.5-r1

2.1.5-r2

2.1.6-r0

2.1.6-r1

Alpine:v3.14 / nikto

Package

Name: nikto
Purl: pkg:apk/alpine/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.1.6-r2

Affected versions

2.*

2.1.5-r0

2.1.5-r1

2.1.5-r2

2.1.6-r0

2.1.6-r1

Alpine:v3.15 / nikto

Package

Name: nikto
Purl: pkg:apk/alpine/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.1.6-r2

Affected versions

2.*

2.1.5-r0

2.1.5-r1

2.1.5-r2

2.1.6-r0

2.1.6-r1

Alpine:v3.16 / nikto

Package

Name: nikto
Purl: pkg:apk/alpine/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.1.6-r2

Affected versions

2.*

2.1.5-r0

2.1.5-r1

2.1.5-r2

2.1.6-r0

2.1.6-r1

Alpine:v3.17 / nikto

Package

Name: nikto
Purl: pkg:apk/alpine/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.1.6-r2

Affected versions

2.*

2.1.5-r0

2.1.5-r1

2.1.5-r2

2.1.6-r0

2.1.6-r1

Alpine:v3.18 / nikto

Package

Name: nikto
Purl: pkg:apk/alpine/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.1.6-r2

Affected versions

2.*

2.1.5-r0

2.1.5-r1

2.1.5-r2

2.1.6-r0

2.1.6-r1

Debian:11 / nikto

Package

Name: nikto
Purl: pkg:deb/debian/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.1.5-3

Affected versions

1.*

1.32-1

1.34-1

1.35-1

1.35-1.1

1.35-2

2.*

2.02-1

2.03-1

2.03-2

1:2.*

1:2.1.1-1

1:2.1.4-1

1:2.1.4-2

1:2.1.5-1

1:2.1.5-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / nikto

Package

Name: nikto
Purl: pkg:deb/debian/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.1.5-3

Affected versions

1.*

1.32-1

1.34-1

1.35-1

1.35-1.1

1.35-2

2.*

2.02-1

2.03-1

2.03-2

1:2.*

1:2.1.1-1

1:2.1.4-1

1:2.1.4-2

1:2.1.5-1

1:2.1.5-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / nikto

Package

Name: nikto
Purl: pkg:deb/debian/nikto?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.1.5-3

Affected versions

1.*

1.32-1

1.34-1

1.35-1

1.35-1.1

1.35-2

2.*

2.02-1

2.03-1

2.03-2

1:2.*

1:2.1.1-1

1:2.1.4-1

1:2.1.4-2

1:2.1.5-1

1:2.1.5-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/sullo/nikto

Affected ranges

Type: GIT
Repo: https://github.com/sullo/nikto
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

e759b3300aace5314fe3d30800c8bd83c81c29f7

Affected versions

2.*

2.1.6