CVE-2013-4411

Опубликовано: 03 дек. 2019

Источник: nvd

CVSS3: 4.3

CVSS2: 4

EPSS Низкий

Описание

Review Board: URL processing gives unauthorized users access to review lists

Ссылки

http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120619.html
Mailing List
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119819.html
Mailing List
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119820.html
Mailing List
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119830.html
Mailing List
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119831.html
Third Party Advisory
http://www.securityfocus.com/bid/63023
Third Party Advisory
VDB Entry
https://access.redhat.com/security/cve/cve-2013-4411
Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4411
Issue Tracking
Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/88061
Third Party Advisory
VDB Entry
https://security-tracker.debian.org/tracker/CVE-2013-4411
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120619.html
Mailing List
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119819.html
Mailing List
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119820.html
Mailing List
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119830.html
Mailing List
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119831.html
Third Party Advisory
http://www.securityfocus.com/bid/63023
Third Party Advisory
VDB Entry
https://access.redhat.com/security/cve/cve-2013-4411
Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4411
Issue Tracking
Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/88061
Third Party Advisory
VDB Entry
https://security-tracker.debian.org/tracker/CVE-2013-4411
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:reviewboard:reviewboard:*:*:*:*:*:*:*:*

Версия от 1.6 (включая) до 1.6.19 (исключая)

cpe:2.3:a:reviewboard:reviewboard:*:*:*:*:*:*:*:*

Версия от 1.7 (включая) до 1.7.15 (исключая)

Конфигурация 2

Одно из

cpe:2.3:o:fedoraproject:fedora:18:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:19:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*

EPSS

Процентиль: 66%

0.00514

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-863

Связанные уязвимости

CVE-2013-4411

CVSS3: 4.3

debian

больше 5 лет назад

Review Board: URL processing gives unauthorized users access to review ...

GHSA-xxp7-m5h6-5jwv

CVSS3: 4.3

github

больше 3 лет назад

Review Board: URL processing gives unauthorized users access to review lists

EPSS

Процентиль: 66%

0.00514

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-863