Описание
DBI in Bugzilla 2.17.1 through 2.17.7 displays the database password in an error message when the SQL server is not running, which could allow remote attackers to gain sensitive information.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| bugzilla | not-affected | woody | package | |
| bugzilla | not-affected | sarge | package | |
| bugzilla | fixed | 2.18-1 | package |
EPSS
Процентиль: 59%
0.00391
Низкий
Связанные уязвимости
nvd
больше 21 года назад
DBI in Bugzilla 2.17.1 through 2.17.7 displays the database password in an error message when the SQL server is not running, which could allow remote attackers to gain sensitive information.
github
больше 3 лет назад
DBI in Bugzilla 2.17.1 through 2.17.7 displays the database password in an error message when the SQL server is not running, which could allow remote attackers to gain sensitive information.
EPSS
Процентиль: 59%
0.00391
Низкий