CVE-2020-29605

Опубликовано: 29 янв. 2021

Источник: nvd

CVSS3: 4.3

CVSS2: 4

EPSS Низкий

Описание

An issue was discovered in MantisBT before 2.24.4. Due to insufficient access-level checks, any logged-in user allowed to perform Group Actions can get access to the Summary fields of private Issues via bug_arr[]= in a crafted bug_actiongroup_page.php URL. (The target Issues can have Private view status, or belong to a private Project.)

Ссылки

https://mantisbt.org/bugs/view.php?id=27357
Exploit
Patch
Vendor Advisory
https://mantisbt.org/bugs/view.php?id=27727
Exploit
Patch
Vendor Advisory
https://mantisbt.org/bugs/view.php?id=27357
Exploit
Patch
Vendor Advisory
https://mantisbt.org/bugs/view.php?id=27727
Exploit
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:mantisbt:mantisbt:*:*:*:*:*:*:*:*

Версия до 2.24.4 (исключая)

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 35%

0.00147

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-863

Связанные уязвимости

CVE-2020-29605

CVSS3: 4.3

debian

около 5 лет назад

An issue was discovered in MantisBT before 2.24.4. Due to insufficient ...

GHSA-pgg9-mmcg-8mxp

github

больше 3 лет назад

MantisBT Incorrect Authorization in bug_actiongroup_page.php