Описание
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, directs error messages from the syncshadowdb command to the HTML output, which could leak sensitive information, including plaintext passwords, if syncshadowdb fails.
Дополнительная информация
https://bugzilla.redhat.com/show_bug.cgi?id=1616812security flaw
EPSS
Процентиль: 74%
0.00862
Низкий
Связанные уязвимости
nvd
почти 23 года назад
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, directs error messages from the syncshadowdb command to the HTML output, which could leak sensitive information, including plaintext passwords, if syncshadowdb fails.
debian
почти 23 года назад
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, directs error me ...
github
около 3 лет назад
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, directs error messages from the syncshadowdb command to the HTML output, which could leak sensitive information, including plaintext passwords, if syncshadowdb fails.
EPSS
Процентиль: 74%
0.00862
Низкий