Описание
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing a mass change, sets the groupset of all bugs to the groupset of the first bug, which could inadvertently cause insecure groupset permissions to be assigned to some bugs.
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing a mass change, sets the groupset of all bugs to the groupset of the first bug, which could inadvertently cause insecure groupset permissions to be assigned to some bugs.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2002-0808
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0054.html
- http://bugzilla.mozilla.org/show_bug.cgi?id=107718
- http://www.iss.net/security_center/static/9305.php
- http://www.redhat.com/support/errata/RHSA-2002-109.html
- http://www.securityfocus.com/bid/4964
EPSS
CVE ID
Связанные уязвимости
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing a mass change, sets the groupset of all bugs to the groupset of the first bug, which could inadvertently cause insecure groupset permissions to be assigned to some bugs.
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing a mass change, sets the groupset of all bugs to the groupset of the first bug, which could inadvertently cause insecure groupset permissions to be assigned to some bugs.
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing ...
EPSS