CVE-2020-29604

Опубликовано: 29 янв. 2021

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

An issue was discovered in MantisBT before 2.24.4. A missing access check in bug_actiongroup.php allows an attacker (with rights to create new issues) to use the COPY group action to create a clone, including all bugnotes and attachments, of any private issue (i.e., one having Private view status, or belonging to a private Project) via the bug_arr[] parameter. This provides full access to potentially confidential information.

Ссылки

https://mantisbt.org/bugs/view.php?id=27357
Exploit
Patch
Vendor Advisory
https://mantisbt.org/bugs/view.php?id=27728
Exploit
Patch
Vendor Advisory
https://mantisbt.org/bugs/view.php?id=27357
Exploit
Patch
Vendor Advisory
https://mantisbt.org/bugs/view.php?id=27728
Exploit
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:mantisbt:mantisbt:*:*:*:*:*:*:*:*

Версия до 2.24.4 (исключая)

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 44%

0.00212

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-862

Связанные уязвимости

CVE-2020-29604

CVSS3: 6.5

debian

около 5 лет назад

An issue was discovered in MantisBT before 2.24.4. A missing access ch ...

GHSA-f38c-wxp6-8xjv

CVSS3: 6.5

github

больше 3 лет назад

MantisBT Missing Authorization access check in bug_actiongroup.php

EPSS

Процентиль: 44%

0.00212

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-862