An issue with the use of unserialize() in ganglia-web allows authentication to be bypassed (CVE-2015-6816).
{ "section": "core" }