Oval Definition:	oval:com.ubuntu.cosmic:def:201754870000000
Revision Date: 2017-01-14 Version: 1 Title: CVE-2017-5487 on Ubuntu 18.10 (cosmic) - low. Description: wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php in the REST API implementation in WordPress 4.7 before 4.7.1 does not properly restrict listings of post authors, which allows remote attackers to obtain sensitive information via a wp-json/wp/v2/users request. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-5487 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND wordpress package in cosmic, is related to the CVE in some way and has been fixed (note: '4.7.1+dfsg-1').
BACK