Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-15576

Опубликовано: 18 окт. 2017
Источник: debian

Описание

Redmine before 3.2.6 and 3.3.x before 3.3.3 mishandles Time Entry rendering in activity views, which allows remote attackers to obtain sensitive information.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
redminefixed3.4.2-1package
redmineend-of-lifejessiepackage
redmineend-of-lifewheezypackage

Примечания

  • https://www.redmine.org/projects/redmine/wiki/Security_Advisories

  • https://www.redmine.org/issues/23803 (private)

  • upstream fixed in 3.2.6 and 3.3.3

Связанные уязвимости

ubuntu логотип

CVE-2017-15576

CVSS3: 7.5
ubuntu
больше 8 лет назад

Redmine before 3.2.6 and 3.3.x before 3.3.3 mishandles Time Entry rendering in activity views, which allows remote attackers to obtain sensitive information.

nvd логотип

CVE-2017-15576

CVSS3: 7.5
nvd
больше 8 лет назад

Redmine before 3.2.6 and 3.3.x before 3.3.3 mishandles Time Entry rendering in activity views, which allows remote attackers to obtain sensitive information.

github логотип

GHSA-r88p-qrqh-rxrp

CVSS3: 7.5
github
больше 3 лет назад

Redmine before 3.2.6 and 3.3.x before 3.3.3 mishandles Time Entry rendering in activity views, which allows remote attackers to obtain sensitive information.